2. Computers & electronics
  3. Networking
  4. Hardware firewalls
  5. McAfee
  6. ICV-S03K-NA-100A

McAfee ICV-S03K-NA-100A Datasheet

  • Hello! I am an AI chatbot trained to assist you with the McAfee ICV-S03K-NA-100A Datasheet. I’ve already reviewed the document and can help you find the information you need or explain it in simple terms. Just ask your questions, and providing more details will help me assist you more effectively!
Data Sheet
Key Advantages
Enterprise-wide coverage
A single industry-proven device
•
provides comprehensive, proactive
network and system security
More visibility and enforcement
through integration
Integrates with McAfee Vulnerability
•
Manager and ePO to give you
on-demand visibility to critical host
details, threats, and risk relevance
Fast, accurate decisions
Improve time-to-protection and
•
time-to-confidence with real-time
security that’s not just automated,
but actionable
Reliable, network-class platforms;
next-generation network protection
Performance from 100 megabits
•
(Mbps) to two gigabits (Gbps)*
Highest port density
•
Operational efficiency
Collaboration between McAfee
•
network, system, risk, and
management products saves time
and IT resources
Ease of deployment
Using the Network Security Manager
•
appliance and built-in installation
wizards, installing the Network
Security Platform takes a few
minutes. The ports on the appliance
are configured as in line by default
with a well-tuned default policy
applied that is ready to block critical
threats.
Comprehensive support for packet
encapsulation decoding
IPv6
•
V4-in-V4, V4-in-V6, V6-in-V4 and
•
V6-in-V6 tunnels
MPLS
•
GRE
•
Q-in-Q Double VLAN
•
High availability
Layer two fail-open
•
Hardware fail-open
•
Failover
•
*Our M-series platform supports up
to 10 Gbps
Reliable protection for every networked device
Howintelligentisyournetworksecurity?
Traditionalintrusionpreventionsystems(IPS)are
pointproductsfraughtwithfalsepositivesand
overwhelmingalertlogs.Theirlackofcoordination
meansvaluablehoursarelosttoredundant
managementprocesses.ManyPC-basedsolutions
don’tscaleunderattack,andfewofferthecontrol
tomitigatepatchpressures.
That’swhymorethan4,500ofthemostdemanding
enterprisesandserviceprovidershaveselected
McAfeeNetworkSecurityPlatformtoprotecttheir
networksandnetwork-connecteddevices.
Integrated network and system security
McAfeeNetworkSecurityPlatformistheperfect
tforenterprisesthatneedreal-timesecurity
condencewithmulti-gigabitperformanceand
integrated,enterprise-widenetworkandsystem
security.NetworkSecurityPlatform’sknowledge-
drivensecurityempowersyoutoautomatically
manageriskandmeetcompliance—whileenhancing
operationalefciencyandreducingITeffort.
NetworkSecurityPlatformcollaborateswith
McAfeeVulnerabilityManager(formerly McAfee
Foundstone
®
),McAfeeePolicyOrchestrator,and
McAfeeHostIntrusionPrevention.Itisalsoakey
componentoftheMcAfeenetworkaccesscontrol
(NAC)solution,McAfeeUniedSecureAccess.
NetworkSecurityPlatformgivesyoumoreofthe
thingsthatmattertoyourbusiness—protection,
visibility,efciency,enforcement,andvalue.

Absolute security confidence
NetworkSecurityPlatformprotectsallnetwork-
connecteddeviceswithacombinationofIPS
andinternalrewallthatoverlapsandintegrates
protectionandextendsrewalldefensesto
theinternalnetwork.Itcorrelatessignatures,
anomalies,denialofservice(DoS),anddistributed
denialofservice(DDoS)informationtoaccurately
blockattacksbeforetheyreachtheirintended
targets.Dynamicthreatandvulnerabilityupdates
ensurecontinuousprotection.
Network-class platform with multi-gigabit
performance
TheNetworkSecurityPlatformportfolioofpurpose-
builtappliancesdeliverscost-effective,high-
performancereliabilityforallcompanylocations
frombranchofcestothenetworkcore.Network
SecurityPlatformissimpletosetupandeasyto
use.Policytemplatescanbesetupinamatterof
minutesandareefcientlymanagedandupdated
throughacentralized,browser-basedconsole.
NetworkSecurityPlatform’senviablequalityand
performanceexceedcarrier-classstandardsandmake
ittheonlyIPStoholdtheNSSGroup’sMulti-Gigabit
IPScertication.Andyougetcarrier-classreliability
withthehighestportdensityonthemarket.
McAfee Network Security Platform I-Series
The industry’s most advanced and proven intrusion prevention solution
Fastertimetoprotection.Fastertimetoresolution.Fastertimetocondence.
McAfee
®
NetworkSecurityPlatformdeliversknowledge-drivensecuritythat’s
integrated,automated,andactionable.OnlyNetworkSecurityPlatformcombines
networkandsystemsecurityinfrastructure,providingclass-leadingthreatprotection
from100megabits(Mb)tobeyond10gigabits(Gb).Installtheapplianceandstart
blockingthreatsimmediately.GetfullvisibilityofeventsthroughtheNetworkSecurity
Managerdashboard,andintegrationwithMcAfeeePolicyOrchestrator
®
(ePO™)and
McAfeeVulnerabilityManagerletsyoumanageriskandenforcecompliancewith
lesseffort.
Mitigate patch anxieties and enforce
your policies
Youareincontrol.WithNetworkSecurityPlatform,
youinsulatesystemsfromriskwhileyouvalidate
anddeploypatches.Youcancontroltrafcand
applyuniquepoliciesandprotectionstoanetwork
segment,acollectionofhosts,orevenasingle
system.It’sexible,too,sothatyoucandeploy
patcheswhenyouarereadyandsetuppolicy
enforcementtomeetyourorganization’sneeds.
CompleteyoursolutionwiththeoptionalNACadd-
onsoftware,andturnyourIPSintoaNACdevice
thatoffersbothpre-andpost-admissioncontrol
andidentitybased-accesscontrol,alongwithhost
quarantineandenforceableaccesspolicies.
Industry-proven network security device
SurroundyourenterprisewithprovenMcAfee
security,backedby24/7researchatMcAfee
Avert
®
Labs.Scaleupyourprotectionstocarrier-
classperformancewithoneintegratednetwork
securitysolution.
Accurate, enterprise-wide threat prevention
Protectyourenterprisefromknown,zero-day,
•
DoS,DDoS,SYNood,andencryptedattacks,
andthreatslikespyware,VoiceoverIP(VoIP)
vulnerabilities,botnets,malware,worms,Trojans,
phishing,andpeer-to-peertunneling
Improveaccuracythroughuseofmultiple
•
advanceddetectionmethods,including
signature,application,andprotocolanomaly;
shell-codedetectionalgorithms;andnext-
generationDoSandDDoSprevention
Parsemorethan100protocolsandreviewmore
•
than3,000high-quality,multi-token,multi-
triggersignatureswithstatefultrafcinspection
Getproactiveblockingforhundredsofattacks
•
straightoutoftheboxwithpre-conguredpolicies
Receivecontinuousthreatupdates24/7fromthe
•
globalresearchteamatMcAfeeAvertLabs
McAfee ePolicy Orchestrator (ePO) integration
Getreal-timevisibilityofactionablesystemhost
•
details,includinghostname,username,OS,
patchlevel,mediaaccesscontrol(MAC)address,
lastscandate,protectiondetails,andthetop
hostIPS,anti-virus,andanti-spywareevents
Synthesizeandlterdatafrommultipletoolsto
•
createcustomreports
Real-time risk-aware network
security platform
IntegrationwithMcAfeeVulnerabilityManager
•
providesauto-importofmultiplevulnerability
datapointsandregularoron-demandscansto
accuratelydeterminethreatrelevance
Adaptive rate limiting
NetworkSecurityPlatformusesreal-time,
•
protocol-basedratelimitingtoapplyapplication,
protocoltype,andport-basedbandwidth
controlsandimprovequalityofservice
Prioritizebusiness-criticaltrafcandblock
•
unwantedandriskyapplications
Certification by NSS Group
NetworkSecurityPlatformistheonlynetwork
•
IPSsolutionthathasreceivedtheNSSGroup’s
Multi-GigabitIPScertication
Proven manageability and availability
Simple,centralized,web-basedmanagement
ofNetworkSecurityPlatformappliancesand
policiesincludes:
Fourteenready-to-use,predenedIPSsecurity
•
policyruletemplates
Integrateduserauthenticationsupporttoexternal
•
databases,includingRadius,LDAP,andTACACS
McAfeeNetworkSecurityManageroffers
•
always-onmanagement,automatedfailover
andfail-back,anddisasterrecoveryofcritical
congurationdata
NetworkSecurityManagersoftwareisprovided
•
atnocostformanaginguptotwoNetwork
SecurityPlatformappliances
NetworkSecurityCentralManagerprovides
•
hierarchicalmanagementforcentralizedcontrol
ofpolicyviewing,modication,anddistribution
tosupportlargeorgeographicallydispersed
sensordeployments
High-availabilitycongurationallowstransparent
•
layer7statefulfailover,avoidingasinglepoint
offailure
Data Sheet McAfee Network Security Platform I-Series
McAfee Network Security Platform
Real-time business protection
Prevent attacks while reducing costs
•
and downtime
Protect your data and infrastructure
•
Meet compliance initiatives
•
Protect your systems
Proactive protection for unpatched
•
systems
Proactive protection for zero-day
•
attacks
System-aware intrusion prevention
•
system (IPS) with McAfee ePO
integration
Host IPS/virus/spyware event visibility
•
Protect your network
IPv6 protection
•
Adaptive rate limiting
•
Comprehensive infrastructure
•
protection
Regulatory and policy compliance
Real-time vulnerability awareness
•
and compliance reporting
Risk-aware IPS with McAfee
•
Vulnerability Manager integration
Behavior-driven host quarantine
•
Enforce internal and regulatory policy
•
Data Sheet McAfee Network Security Platform I-Series
Network Security Platform Specifications I-Series
Sensor Hardware
Components
I-4010
I-4000
I-3000 I-2700 I-1400 I-1200
Networklocation Core Core Perimeter Branchofce/
perimeter
Branchofce
Performancethroughput Upto2Gbps Upto1Gbps Upto600Mbps Upto200Mbps Upto100Mbps
Maximumconcurrent
connections
1,000,000 500,000 250,000 80,000 40,000
Ports
GigabitEthernetdetectionports 12/4 12 2
FastEthernet(FE)detection
ports
6 4 2
Dedicatedresponseports 2FE 2FE 3FE 1FE 1FE
DedicatedManagementports 1FE 1FE 1FE 1FE 1FE
Externalfail-opencontrolports 6/2 6 1
Consoleandauxports Yes Yes Yes Yes Yes
Built-innetworktaps No No Yes(forFEports) Yes Yes
Fail-open Optional Optional Yes(forFEports) Yes Yes
Fail-close Yes Yes Yes Yes Yes
Mode of operation
Spanportmonitoring Yes Yes Yes Yes Yes
Tapmode Optional Optional Yes(forFEports) Yes Yes
In-linemode Yes Yes Yes Yes Yes
Portclustering Yes Yes Yes Yes Yes
NumberofvirtualIPSsystems 1,000 1,000 100 32 16
Trafcmonitoringonactive-
activelinks
Yes Yes Yes Yes Yes
Trafcmonitoringonactive-
passivelinks
Yes Yes Yes Yes Yes
Monitoringofasymmetric
trafcrouting
Yes Yes Yes Yes Yes
High availability
Redundantpower Yes(optional) Yes(optional) Yes(optional) No No
Devicefailuredetection Yes Yes Yes Yes Yes
Linkfailuredetection Yes Yes Yes Yes Yes
Data Sheet McAfee Network Security Platform I-Series
Sensor Hardware
Components
I-4010
I-4000
I-3000 I-2700 I-1400 I-1200
Physical
Dimensions 2RURack
mountable
17.44(W)
x3.44(H)
x23.00(D)
2RURack
mountable
17.44(W)
x3.44(H)
x23.00(D)
2RURack
mountable
17.44(W)
x3.44(H)
x23.00(D)
1RURack
mountable
17.32(W)
x1.65(H)
x10.5(D)
1RURack
mountable
17.32(W)
x1.65(H)
x10.5(D)
Weight 47lbs. 47lbs. 47lbs. 17lbs. 15lbs.
Power
Powerconsumption 350w 350w 250w 100w 100w
Temperature 0°to40°C(operating)0°to70°C(non-operating)
Relativehumidity
(non-condensing)
Operational:10percentto90percent
Non-operational:5percentto95percent
Altitude 0to10,000feet
Safetycertication UL1950,CSA-C22.2No.950,EN-60950,IEC950,EN60825,IEC60825,21CFR1040CBlicenseand
reportcoveringallnationalcountrydeviations.
EMIcertication FCCPart15,ClassA(CFR47)(USA)ICES-003ClassA(Canada),EN55022ClassA(Europe),CISPR22
ClassA(Int’l)
Sensor Software Components
I-4010
I-4000
I-3000 I-2700 I-1400 I-1200
Statefultrafc
inspection
IPdefragmentationandTCP
streamreassembly
Yes Yes Yes Yes Yes
Detailedprotocolanalysis Yes Yes Yes Yes Yes
Asymmetrictrafcmonitoring Yes Yes Yes Yes Yes
Protocolnormalization Yes Yes Yes Yes Yes
Advancedevasionprotection Yes Yes Yes Yes Yes
Forensicdatacollection Yes Yes Yes Yes Yes
Protocoltunneling Yes Yes Yes Yes Yes
Protocoldiscovery Yes Yes Yes Yes Yes
StackedVLAN Yes Yes Yes Yes Yes
Signature
detection
User-denedsignatures Yes Yes Yes Yes Yes
Real-timesignatureupdates Yes Yes Yes Yes Yes
Anomaly
detection
Statisticalanomaly Yes Yes Yes Yes Yes
Protocolanomaly Yes Yes Yes Yes Yes
Applicationanomaly Yes Yes Yes Yes Yes
Data Sheet McAfee Network Security Platform I-Series
McAfee and/or other noted McAfee related products contained herein are registered trademarks or trademarks of McAfee, Inc., and/or
its affiliates in the U.S. and/or other countries. McAfee Red in connection with security is distinctive of McAfee brand products. Any other
non-McAfee related products, registered and/or unregistered trademarks contained herein is only by reference and are the sole property
of their respective owners. © 2009 McAfee, Inc. All rights reserved.
5362ds_nts_nsp_sensor_0409
McAfee, Inc.
3965 Freedom Circle
Santa Clara, CA 95054
888 847 8766
www.mcafee.com
I-4010
I-4000
I-3000 I-2700 I-1400 I-1200
DoSdetection Threshold-baseddetection Yes Yes Yes Yes Yes
Self-learningprole-based
detection
Yes Yes Yes Yes Yes
MaximumDoSproles 5,000 5,000 300 120 100
Intrusion
prevention
Stopattacksinprogressinreal
time
Yes Yes Yes Yes Yes
Dropattackpackets/sessions Yes Yes Yes Yes Yes
Hostquarantine Yes Yes Yes Yes Yes
InitiateTCPreset,ICMP
unreachable
Yes Yes Yes Yes Yes
Packetlogging Yes Yes Yes Yes Yes
Automatedanduser-initiated
prevention
Yes Yes Yes Yes Yes
Encryptedattack
protection
Stopsencryptedattacksinreal
time
Yes Yes Yes No No
Internalrewall Blocksunwantedandnuisance
trafc
Yes Yes Yes Yes Yes
Granularsecuritypolicy
enforcement
Yes Yes Yes Yes Yes
Highavailability Statefulfailover Yes Yes Yes(forFE
ports)
Yes Yes
Management Commandlineinterface(console) Yes Yes Yes Yes Yes
Managercommunication Sameforall
models
Sameforall
models
Sameforall
models
Sameforall
models
Sameforall
models
/