Intrusion Prevention Systems
SNF-Intrusion Prevention Systems (STL-7000 series) combine the IPS rules from industry-standard SNORT, SURICATA, BRO, YARA, and user-defined rule sets and then we convert those into Servlytics IPS rules, compile with our proprietary rule compilers, and then program the FPGA nano-filters to process data at near line speed.
STL-7000S Intrusion Prevention System Benefits
Network security solutions tend to be the first targets of attacks, resulting in crippling performance after reaching their maximum handling limit during attacks. This may leave businesses without access to their network or vulnerable to immediate attacks. Our Intrusion Prevention Systems can maintain smooth and continuous packet flow while providing intrusion protection. Servlytics’ STL-7000S can protect against the latest threats and advanced malware with industry-leading threat prevention as defined by the industry-standard rules sets and the rule detections.
Hack-Proof Hardware Design for Max Device Security
SNF core security engines are programmed into the FPGA devices. The hardware-based design provides hack-proof protection of the SNF.
Scalable and Customizable for Industry-Leading Value
Using multiple NSC, STL-7000S systems can be configured to service speeds ranging from 20Gbps to 100Gbps and can be also custom-designed by application resulting in affordably priced solutions.
Deep Packet Inspection-based detections and mitigations policies are applied to individual packet maintaining the legitimate traffic forwarded with no disruption. The total system latency that each packet experience is less than 20 microseconds.
Maximum Network Service Stability
Network security solutions tend to be the first targets of attacks, resulting in crippling performance after reaching their maximum handling limit during attacks. This may leave businesses without access to their network or vulnerable to immediate attacks. STL-7000S systems can maintain smooth and continuous packet flow while performing IPS protection services.
Full End-to-End Connection
STL-7000S systems are in-line systems and provide full bidirectional packet forwarding capability. The packets are copied and inspected by the SNF module in the FPGA engines. The match results’ detection policies are applied to the packets before leaving the system. All packets using the full bandwidth of each datalink (10GbE for instance) entering the STL-7000S systems are inspected thus enabling all connections possible as established.
275 N. Lindbergh Ste 1.
Saint Louis, MO 63141
Please contact us to schedule a demo of our solutions or to request specifications to meet your current hardware.