|
|
|
|
 |
| LAN Security |
| Complete ARP Security Solution |
StoneOS provides multiple ways to defend against layer 2 attacks on the local area network:
- Authenticated ARP exchange between client and gateway
- Static binding of IP and MAC
- Static binding of MAC and port
- Enable/Disable ARP learning
- Enable/Disable MAC learning
- Limit number of IPs per MAC
- Auto sending of Gratuitous ARP
- Auto sending of Gratuitous ARP for hosts
- ARP reverse lookup
- Port isolation
- ARP inspection
|
 |
Attack Defense on LAN
StoneOS provides attack defense based on zone. This can filter out malicious traffic generated by viruses, Trojans and other attack tools on the LAN, and make sure network reachability by healthy PCs.
Security Management on LAN
StoneOS’s versatile Session Limiting functionality can control total sessions, initiated sessions, accepted sessions and session ramp up rate based on individual IPs. This effectively controls the P2P downloading problem faced by many enterprises today and DoS attacks by infected stations on the LAN.
Security Analysis on the LAN
StoneOS’s logging module can collect events of MAC address conflict, ARP spoofing and various attacks on the LAN. Statistics can be collected and presented to the administrator in tabulated form. This helps isolate the problem station that generated the most attacks. |
| |
|
|
|
| |
|
|
|
