Intrusion Protection

Astaro Security Linux Intrusion Protection identifies and blocks over 1,500 different kinds of probes and attacks. It can notify administrators of suspicious activities, or have the firewall stop attacks immediately.

Selected Classes of Intrusion

  • Detection Rules

  • Probes and Attacks

  • Backdoor software

  • Denial of service

  • Distributed denial of service

  • Network scanning

  • Unwanted traffic

Applications and Services

  • Messaging and chat

  • MySQL server database

  • Oracle database

  • CGI scripts

  • Command shell code

  • ColdFusion

  • FrontPage

  • Microsoft IIS

  • Multimedia streaming software

  • P2P networks (Napster, Kazaa)

Web , FTP and e-mail Virus protection

Technology Partnership

Astaro Security Linux uses the database of 80,000 virus signatures maintained by Kaspersky Labs, a global leader in antivirus expertise. Kaspersky Labs staff of 250, monitors the Internet for new viruses 24 hours a day from three labs worldwide.

Spam Protection

Astaro Security Linux utilizes multiple methods to pierce the disguises used by professional spammers:

  • Sender Address Verification. 

  •  Realtime Blackhole Lists (RBLs).

  • Email addresses are checked against databases of known spammers. 

  •  Header Analysis. 

  • Body Analysis (Heuristics). 

  • Whitelist and Blacklist.

 

 

 Astaro Security Linux Appliance

 

 

Award winning, Rock-solid network security, simple and affordable.

 "...exceptionally polished and extremely robust security gateway for a very reasonable price.... the most polished and easy to use Web-based management system we've seen to date." --- INFOWORLD

Astaro provides six essential security applications in one easy-to-manage package that protects organizations from hackers, viruses, worms, spam and other threats to security and productivity.

Astaro Security Linux offers six critical security applications: 

  • Firewall

  • Intrusion protection

  • E-mail virus protection

  • Web virus protection

  • Spam protection

  • VPN gateway

  • URL filtering capabilities. 

A unified management platform makes it easy to deploy,  administer, and update a complete network security solution with surprisingly little cost and effort. The software can be installed on a standard Intel PC, or purchased pre-installed on a variety of security appliances.

  • One installation process

  • One management interface

  • One update mechanism

  • One set of logs and reports

Based on the best of open source security software, Astaro Security Linux has won numerous awards, and is in use on over 20,000 networks in 60 countries.

Astaro security Linux is extremely scalable, with the ability to protect small office home office/remote office to enterprise implementations  incorporating  features such as High availability, VLANs, Qos and a configuration manager to manage multiple  sites from a single management platform. 

Document Downloads:

Astaro Overview Astaro Firewall
Astaro Virus Protection Astaro Intrusion Protection
Astaro VPN Astaro Surf Protection
Astaro Spam Protection  InfoWorld Firewall Bakeoff

 

Firewall

With stateful packet inspection and application level proxies, to guard Internet communications traffic in and out of the organization.

  • Stateful Packet Inspection

  • Application-Level Deep PacketFiltering

  • Security Proxies

    • HTTP

      •

    • DNS

    • SOCKS

    • POP3

    • Ident

    • SMTP

  • NAT and Masquerading

  • DoS Protection

  • Traffic Shaping and QoS

  • Detailed Reporting

Virtual Private Network

Gateway

Assures secure communications with "road warriors," telecommuters, and remote offices.

  • Sophisticated encryption algorithms include:

    • AES (Rijndael)

    • DES

    • 3DES

    • Blowfish

    • Serpent 128-bit

    • Twofish 128-bit

    • MPPE (40 and 128 bit)

  • IPSec and PPTP VPNs

    •  Windows PPTP client

    • Astaro IPSec client

    • Other VPN clients that follow the IPSec

    • Mac OS X VPN client

    These clients can be mixed in an Astaro VPN Environment

     

  • Multiple Architectures

    • Net-to-Net

    • Host-to-Net

    • Host-to-Host

     

    Integrates Into Existing Environments

     

  • Authenticate VPN users against a local database, Radius Servers, orActive Directory.

  • Apply access policies based on users and groups, as well as IPs and networks.

  • Apply access policies on PKI-based IPSec user groups.

  •  Full Support of Native Windows VPN and Mac OS X VPN using L2TP over IPSec.

Copyright © 2003 Aavex Technology