mopdf.com

Data SheetMcAfee NetworkSecurity PlatformA uniquely intelligent approach to network securityKey AdvantagesUnparalleled AdvancedThreat prevention Signature-less, advancedmalware analysis. Inline Browser andJavaScript emulation.Advanced botnet andmalware callbackdetection.Behavior-based analysisand DDoS protection.Integration with McAfeeAdvanced Threat Defense.Security Connected Real-time threat sharingwith McAfee ThreatIntelligence Exchange (TIE). Endpoint context viaePolicy Orchestrator (McAfee ePO ).Endpoint processcorrelation via EndpointIntelligence Agent.Data Sharing andQuarantine with McAfeeEnterprise SecurityManager (SIEM).Host Risk Analysis viaMcAfee VulnerabilityManager.Predictive malwaredetection via McAfee GTI.McAfee Network Security Platform is a uniquely intelligent security solutionthat discovers and blocks sophisticated threats in the network. Using advanceddetection and emulation techniques, it moves beyond mere pattern matchingto defend against stealthy attacks with extreme accuracy. This next-generationhardware platform scales to speeds of more than 40 Gbps with a single deviceto meet the needs of demanding networks. The Security Connected approachto security management streamlines security operations by combining realtime McAfee Global Threat Intelligence (McAfee GTI) feeds with rich contextualdata about users, devices, and applications for fast, accurate response tonetwork-borne attacks.Protection Against Today’s StealthyThreatsYour network faces advanced, stealthy attacksthat can evade traditional detection methods,leaving your network exposed to cripplingbreaches and downtime. Unfortunately, mostorganizations lack the financial and operationalresources to implement and manage thecombination of tools and technologies requiredto provide adequate defense.McAfee Network Security Platform is anintegrated network security platform thatcombines intelligent threat prevention withintuitive security management to improvedetection accuracy and streamline securityoperations. It provides industry-leadingcoverage against advanced threats, malwarecallbacks, zero-day threats, and denial-ofservice attacks. Built from the ground up forintegration with McAfee’s Security ConnectedEcosystem, McAfee’s Network Security Platformleverages security data from across theorganization and help plug the security gapsoften missed by other pieced-together securitysolutions.Unparalleled threat preventionMcAfee Network Security Platform is basedon a next-generation inspection architecturedesigned to perform deep inspection ofnetwork traffic while maintaining line-ratespeeds. It uses a combination of advancedinspection technologies—including full protocolanalysis, threat reputation, behavior analysis,and advanced malware analysis to detect andprevent both known and zero-day attacks onthe network.Comprehensive malware defenseNo single malware detection technologycan prevent all attacks, which is why McAfeeNetwork Security Platform layers multiplesignature and signature-less detection enginesto help prevent unwanted malware fromwreaking havoc on your network. It combines

Data SheetKey Advantages continuedPerformance andavailability Next GenerationArchitecture. Up to 40 Gbps throughput.Unrivaled SSL inspectionperformance.Industry-leading reliability.Active-active and activepassive availability.Intelligent securitymanagement Intelligent alert correlationand prioritization. Robust malwareinvestigation dashboards.Preconfiguredinvestigation workflows.Scalable web-basedmanagement.Visibility and control Application identification. User identification. Device identification.file reputation from McAfee GTI, deep fileanalysis with JavaScript inspection, and anadvanced anti-malware engine to detectcustom malware and other stealthy attacks.Security ConnectedGetting your hands on the data you need hasnever been easier. McAfee offers real-timeintegration with McAfee ePO software andMcAfee Enterprise Security Manager for real-timecorrelation of network events across all relevantsources. Through integration with McAfeeePO software and McAfee Enterprise SecurityManager, McAfee Network Security Platformgets an accurate view of threats as they relate todevices and users and which ones present thegreatest risk to the organization. The solutionincorporates device details, user information,endpoint security posture, vulnerabilityassessments, and other rich information to helporganizations understand threat severity andbusiness risk factors.Performance and scalabilityGet the best of both worlds—security andhigh performance. McAfee Network SecurityPlatform combines a single-pass, protocolbased inspection architecture with purposebuilt, carrier-class hardware to achieve realworld inspection of more than 40 Gbps in asingle device. Its ultra-efficient architecturepreserves performance regardless of securitysettings, while other intrusion preventionsystem (IPS) solutions can experience up to50% reduction in throughput with securityover-performance policies.McAfee Network Security PlatformVisibility and controlMake informed decisions about the applicationsand protocols on your network. McAfeeNetwork Security Platform is the first andonly IPS solution to combine advancedthreat prevention and application awarenessinto a single security decision engine. Wecorrelate threat activity with application usage,including layer 7 visibility of more than 1,500applications and protocols, to allow you tomake more informed decisions about whichapplications you allow on your network. Inaddition to application identification, McAfeeNetwork Security Platform provides user anddevice visibility. It prioritizes risky hosts andusers, including active botnets, through theidentification of anomalous network behavior.Intelligent security managementMake the most of your security investmentthrough intelligent network securitymanagement. McAfee Network SecurityManager offers scalable web-basedmanagement from two to several hundrednetwork security appliances. It offers intuitiveprogressive disclosure workflows that guideadministrators to relevant alerts as well as easyto-use security dashboards that automaticallyprioritize events based on alert severity andrelevancy. McAfee Network Security Platformintegrates with McAfee ePO software to giveyour organization a consolidated view of riskand compliance across the entire enterprise,including up-to-the-minute assessmentsof at-risk infrastructure based on systemvulnerabilities, network defenses, and endpointsecurity levels.2

Data SheetAdditional FeaturesAdvanced threat preventionMcAfee Gateway Anti Malware (GAM)Emulation engine. PDF Javascript emulation engine. Adobe Flash behavioral analysis engine. Advanced evasion protection. McAfee Network SecurityPlatform Helps You:Close security holes. Block malicious networkactivity. Mobile threat reputation and cloudanalysis.Botnet and malware callback protectionDNS/DGA Fast flux callback detection. McAfee GTIFile reputation. IP reputation. Geo-location.High availabilityActive-active and active-passive withstateful failover. External fail-open (active). Built-in fail-open.Protocol tunneling supportIPv6. Prevent stealthy attacks. DNS Sinkholing. Detect advanced malware. Heuristic bot detection. Multiple attack correlation. MPLS. Command and control database. GRE. Q-in-Q Double VLAN.Reduce managementheadache. Automatically prioritizeevents. Streamline investigativeworkflows.Eliminate unnecessarytuning.Advanced intrusion preventionIP defragmentation and TCP streamreassembly. Adapt to the network. 1 GigE, 10 GigE, 40 GigEconnectivity. Scale to 40 Gbps.Active-active andactive-passive availability.McAfee, user-defined, and open-sourcesignatures. User authentication (Radius and LDAP).Automated failover and fail-back.Host quarantine and rate limiting. Inspection of virtual environments. Host-based connection limiting. Self-learning, profile-based detection.V4-in-V4, V4-in-V6, V6-in-V4, and V6in-V6 tunnels.McAfee Network Security ManagerTiered management (up to 1,000 sensors). DoS and DDoS preventionThreshold and heuristic-baseddetection.McAfee Network Security Platform Disaster recovery of criticalconfiguration data.Centralized, hierarchical policymanagement.3

Data SheetNetwork Security Platform SpecificationsNext Generation HardwareSensor Hardware ComponentsNS9300NS9200NS9100PerformanceAggregate Performance40 Gbps20 Gbps10 GbpsUp to 70 GbpsUp to 35 GbpsUp to 30 GbpsMaximum Concurrent ns per Second1,000,000575,000450,000HTTP Connections per Second750,000375,000260,000Throughput with SSL Decryption(based on 10% SSL traffic)40 Gbps20 Gbps10 Gbps3,200,0001,600,0001,200,0001,0241,0241,024Less than 100 µsLess than 100 µsLess than 100 µsNumber of Virtual IPS Systems1,0001,0001,000Maximum DoS um Throughput(UDP 1512 Byte Packets)Maximum SSL Flow CountSSL Keys ImportedTypical LatencyACL RulesPortsFixed Gigabit Ethernet—Copper Ports(internal fail-open)Fixed 10 GigE/1 GigE (SFP ) Ports———Fixed 40-Gigabit Ethernet—22Network I/O Slots4224-port (QSFP ) 40 GigE,2-port (QSFP ) 40 GigE,8-port (SFP /SFP) 10 GigE/1 GigE,or 6-port (RJ45) 1 GigE(with internal fail-open)4-port (QSFP ) 40 GigE,2-port (QSFP ) 40 GigE,8-port (SFP /SFP) 10 GigE/1 GigE,or 6-port (RJ45) 1 GigE(with internal fail-open)4-port (QSFP ) 40 GigE,2-port (QSFP ) 40 GigE,8-port (SFP /SFP) 10 GigE/1 GigE,or 6-port (RJ45) 1 GigE(with internal fail-open)Network I/O Modules (four options)10 Gigabit EthernetUp to 32Up to 16Up to 1640-Gigabit EthernetUp to 16Up to 10Up to 10Dedicated Response Ports (RJ45)1 (10G/1G/100M)1 (10G/1G/100M)1 (10G/1G/100M)Dedicated Management Ports (RJ45)1 (10G/1G/100M)1 (10G/1G/100M)1 (10G/1G/100M)Dedicated Storage Ports (RJ45)1 (10G/1G/100M)1 (10G/1G/100M)1 (10G/1G/100M)2 x 2RU Rack Mountable 17.24” (W)x 6.88” (H) x 28.76” (D)2RU Rack Mountable 17.24” (W)x 3.44” (H) x 28.76” (D)2RU Rack Mountable 17.24” (W)x 3.44” (H) x 28.76” (D)PhysicalDimensionsWeight134 lbs.67 lbs.67 lbs.Storage600 GB (2 x Dual Solid State 300 GB inRAID 1 configuration)Dual Solid State 300 GB inRAID 1 configurationDual Solid State 300 GB inRAID 1 configuration2260w1130w1130wDC Power AvailableMaximum Power ConsumptionOptionalOptionalOptionalRedundant Power tive Humidity (non-condensing)AltitudeSafety CertificationEMI CertificationMcAfee Network Security Platform100-240 VAC (50 / 60Hz)0 to 35 C (operating) -40 to 70 C (non-operating)Operational: 10% to 90% Non-operational: 5% to 95%0 to 10,000 feetUL 1950, CSA-C22.2 No. 950, EN-60950, IEC 950, EN 60825,21CFR1040 CB license and report covering all national country deviations.FCC Part 15, Class A (CFR 47) (USA) ICES-003 Class A (Canada), EN55022 Class A (Europe), CISPR22 Class A (Int’l)4