June 30, 2005
- Ease of Use:
- Value for Money:
- Overall Rating:
Good range of products; high level of protection.
Basic reporting through the web-based management.
Excellent protection through the Vaccine system and top management puts this close to the top of the test.
This IPS (the renamed UnityOne-50) is the baby of TippingPoint's range, able to support throughput of up to 50Mbps – but the firm has a full range of products, able to cope with throughput up to five gigabits. The TippingPoint 50 has dual Fast Ethernet ports, so it can work inline with a connection and a dedicated management port.
It can be installed singularly or in active-active or active-passive high-availability mode.
Initial configuration, though, is performed using the LCD screen and cursor keys. Using this facility it only took us a few minutes to give the box an IP address, but TippingPoint recommends you use the console port on the front.
Once the device has an IP address, you can manage it via its web-based interface. For larger installations, the firm also has its Security Management System appliance, which lets you manage hundreds of IPS appliances and report on them centrally.
You will have to use Internet Explorer 6 or higher to manage the appliance via its web-based Local Security Manager (LSM), as Firefox is not supported. Once we logged onto the LSM, we found it one of the best on test.
It's powerful and incredibly easy to use. As with the other systems on test, you have to create a security policy that the appliance uses to scan traffic. This lets you choose which attack signatures you want to look out for and how you want to respond to detection.
Attack signatures are updated automatically on a weekly basis and are referred to as Digital Vaccines. But for new, harmful threats, Vaccines are created immediately and sent out, so you get very quick protection against zero-day threats.
The TippingPoint 50 engine will also scan for network anomalies providing real-time blocking, while you can also create your own attack signatures. The system comes with its own recommend filter settings, so you can just plug the box in and let it get on with its job without any management.
Reporting using the LSM is basic, but it gets a lot better if you opt for the SMS package. With a huge range of appliances to cope with any size network, this is a powerful, flexible system.
Opt for the SMS management appliance as well, and you have got an even more powerful system that is incredibly simple to manage.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Information Security Risk Manager, £45-55k + bens
Infosec People - West Midlands, England, Coventry
SOC Analyst, Aldershot, £55-63k + benefits
Infosec People - England, Aldershot, Hampshire
Security Architect, Cardiff - to £70k Basic
Infosec People - Cardiff, Wales
Interim CISO (Chief Information Security Officer) - Cyber Security Director
CYBER EXECS - London (Central), London (Greater)
Sign up to our newsletters
SC Magazine UK Articles
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Met Police grab suspect with phone unlocked to get hold of data
- Cyber-security must reflect risk not just regulation
- Data centres are on the move - where will they end up?
- The information security implications of M&A deals
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- 9.2 million medical records for sale on darkweb
- Microsoft Office 365 hit with massive Cerber ransomware attack, report
- Over 400,000 phishing sites have been detected each month in 2016
- TalkTalk customers urged to get routers swapped over hacker fears
- Report: Mirai 'is just the tip of the iceberg'
- Avalanche takedown involved searches in 40 countries
- India Supreme Court calls on tech giants to curb sexual assault, cyber-crime