Our intrusion detection and prevention system (IPS) can quickly detect malicious network activity, identify, record and prevent various threats, and generate detailed reports on each suspicious event.
Security breaches are usually detected by means of heuristic techniques and matching with signatures of already known attacks. UserGate regularly provides and updates its own databases of heuristic rules and virus signatures. IPS can track and proactively block all the detected attacks in real time, e.g. terminate malicious network connections, send notifications to network administrators, log the suspicious activity, and so on.
Administrators can create various IPS profiles (signature sets for protection of certain services) and also specify IPS rules to define actions per traffic type that will be verified by the IPS module according to the assigned profiles.