Glossary

signature library: A set of IDS signatures. Sygate provides a library of known signatures in the System Library, which can be kept up-to-date by downloading the latest version from the Sygate Technologies web site to your Sygate Management Server.

Administrators can also specify new attack signatures of their own choosing in custom libraries. See also System Library.

silent mode: The ability to hide the Sygate Security Agent user interface from the end user.

simple rule: A type of firewall rule that enables a system administrator to create security rules without having to define priorities, severities, triggers, and events. Examples of simple rules could be a rule that allows trusted applications, a rule that allows hosts, a rule that allows VPNs, etc. Simple rules have a default priority of 10, where 0 is the highest and 15 is the lowest priority. The names of simple rules begin with “Srg”. See also Advanced Rule.

Smart DHCP: Allows a Dynamic Host Configuration Protocol (DHCP) client to receive an IP address from a DHCP server while protecting the client against DHCP attacks from a network. If a Sygate Security Agent sends a DHCP request to a DHCP server, it waits for five seconds to allow for an incoming DHCP response. If a Sygate Security Agent does not send a DHCP request to a DHCP server, then Smart DHCP does not allow the packet. Smart DHCP does not block packets. It simply allows the packet if a DHCP request was made. Any other DHCP blocking or allowing is done by the normal security rule set. See also Dynamic Host Configuration Protocol (DHCP).

Smart DNS: Allows a Domain Name System (DNS) client to resolve a domain name from a DNS server while providing protection against DNS attacks from the network. This option blocks all Domain Name System (DNS) traffic except outgoing DNS requests and the corresponding reply. If a client computer sends a DNS request and another computer responds within five seconds, the communication is allowed. All other DNS packets are dropped. Smart DNS does not block any packets; blocking is done by the normal security rule set.

Smart WINS: Allows Windows Internet Naming Service (WINS) requests only if they have been requested. If the traffic is not requested, the WINS reply is blocked.

sniffing: The process of actively capturing datagram and packet information from a selected network. Sniffing acquires all network traffic regardless of where the packets are addressed.

source IP address: The IP address from which the traffic originated. See also IP address.

source port: The port number on which the traffic originated. See also port.

61