Chapter 2 Features and Applications
NXC5200 User’s Guide
36
Firewall
The NXC’s firewall is a stateful inspection firewall. The NXC restricts access by
screening data packets against defined access rules. It can also inspect sessions.
For example, traffic from one zone is not allowed unless it is initiated by a
computer in another zone first.
Intrusion Detection and Prevention (IDP)
IDP (Intrusion Detection and Protection) can detect malicious or suspicious
packets and respond instantaneously. It detects pattern-based attacks in order to
protect against network-based intrusions. See
for a
list of attacks that the NXC can protect against. You can also create your own
custom IDP rules.
Anomaly Detection and Prevention (ADP)
ADP (Anomaly Detection and Prevention) can detect malicious or suspicious
packets and respond instantaneously. It can detect:
• Anomalies based on violations of protocol standards (RFCs – Requests for
Comments)
• Abnormal flows such as port scans.
The NXC’s ADP protects against network-based intrusions. See
for more on the kinds of attacks that
the NXC can protect against. You can also create your own custom ADP rules.
Bandwidth Management
Bandwidth management allows you to allocate network resources according to
defined policies. This policy-based bandwidth allocation helps your network to
better handle applications such as Internet access, e-mail, Voice-over-IP (VoIP),
video conferencing and other business-critical applications.
Anti-Virus Scanner
With the anti-virus packet scanner, your NXC scans files transmitting through the
enabled interfaces into the network. The NXC helps stop threats at the network
edge before they reach the local host computers.
Application Patrol
Application patrol manages instant messenger and peer-to-peer applications like
MSN and BitTorrent. You can even control the use of a particular application’s
individual features (like text messaging, voice, video conferencing, and file
transfers). Application patrol has powerful bandwidth management including