Intrusion Detection and Prevention

Together with leading security technology partner McAfee, Brocade provides the industry’s most comprehensive closed-loop intrusion detection, prevention, and remediation solutions. Organizations can implement complete threat coverage for client and server operating system and application vulnerabilities, malware infections, and Denial of Service (DoS) and Distributed DoS attacks.

McAfee provides threat prevention technologies that combine signatures, protocol validation, anomaly detection, behavioral analysis, and other methods to help ensure the highest levels of network IPS protection. In addition, Brocade multilayer LAN switches deliver wire-rate sFlow capabilities, providing network monitoring and analysis capabilities for traffic traversing the network infrastructure.

Organizations can deploy IPS solutions such as those from Brocade and McAfee wherever strategic assets must be secured in the network. This can be at the perimeter, in the data center, at the core and aggregation layers, and even at the edge of the network (where solving the security problem has often been costly and difficult).

The secret behind cost-effective Brocade edge-based solutions is adherence to open standards to enable interoperability with leading intrusion prevention vendors, as well as the embedded support for sFlow technology. Embedded sFlow allows Brocade products to stream packet data back to IPS systems for detailed packet inspection and analysis, complementing the main function of the intrusion prevention technology, whereby IPS devices are placed in the appropriate layers of the network to detect and eliminate malware and mitigate DDoS attacks. Brocade solutions can perform packet capture without impacting the wire-speed performance of the LAN switches.

Brocade IronView Network Manager (INM) Open Source IDS/IPS Solutions
Organizations can easily configure Brocade switches as sensors to capture packets through the embedded sFlow capability and send them back to INM, which acts as an sFlow collector. INM then converts the sFlow data to pcap format, which is understood by a variety of open source products. Each of these products can then provide valuable tools to detect and defend against network attacks.

To learn more about McAfee IPS capabilities, visit this link, as well as this link.

For information on McAfee IPS management capabilities, refer to McAfee Network Security Manager.

• Solution Briefs

  • Brocade and Blue Coat Solutions: Optimizing SharePoint (1.5 MB)

  • Brocade and IBM Internet Security Systems Solutions (1.5 MB)

  • Brocade And Impulse Point (406.2 KB)

  • Brocade and McAfee: An Industry-Leading Enterprise Networking and Threat-Prevention Solution (1.5 MB)

  • Comprehensive Enterprise Security via Web, Messaging, and Gateway Best-of-Breed Solutions (631 KB)

  • Secure, Integrated, Scalable Solutions Deliver Rich Content in Large-Scale Deployments (729.7 KB)