McAfee M4050 - Network Security Platform Guía de usuario descargar pdf (Pagina 8)

Functions of a Sensor

The primary function of a McAfee

Network Security Sensor (Sensor) is to analyze traffic on selected

network segments and to respond when an attack is detected. The Sensor examines the header and

data portion of every network packet, looking for patterns and behavior in the network traffic that

indicate malicious activity. The Sensor examines packets according to user-configured policies, or rule

sets, which determine what attacks to watch for, and how to respond with countermeasures if an

attack is detected.

If an attack is detected, a Sensor responds according to its configured policy. Sensor can perform

many types of attack responses, including generating alerts and packet logs, resetting TCP

connections, "scrubbing" malicious packets, and even blocking attack packets entirely before they

reach the intended target.

Network topology considerations

Deployment of a Sensor requires knowledge of your network to help determine the level of

configuration and the number of installed Sensors. You also need to determine the number of McAfee

ePolicy Orchestrator (McAfee ePO) /McAfee NAC servers required to protect your network. The Sensor

is purpose-built for the monitoring of traffic across one or more network segments. For more

information, see the McAfee Network Security Platform Getting Started Guide.

Overview

Functions of a Sensor

McAfee

Network Security Platform M-3050/M-4050 Sensor Product Guide

1 2 3 4 5 6 7 8 9 10 11 12 13 ... 41 42

Sin comentarios

McAfee M4050 - Network Security Platform Guía de usuario Pagina 8