HP X Unified Security Platform RIP (Routing Information Protocol, RFC 2453), Security Management System (SMS), Security Profiles, Security Policy, security zone, SNMP Server, spyware filters

Glossary

attack has gathered data by probing your system and scanning your network, it continues with pointed attacks against those vulnerabilities. Reconnaissance filters look for these patterns and alert either the LSM or the SMS when an attack is detected. Port Scan/Host Sweep filters (see page 311) filters are included in this category. These filters are part of the Application Protection filter category.

RIP (Routing Information Protocol, RFC 2453)

RIP (Routing Information Protocol, RFC 2453) is a dynamic protocol that uses a distance vector algorithm to communicate route information with other routers in the network. RIP is well suited to small networks and uses a single metric hop count to determine distances. RIP periodically sends route advertisments every 30 seconds using UDP broadcast or multicast packets. The best route to a destination will be the one that passes through the fewest number of routers (lowest hop count) to reach its destination. A destination with a metric of 16 hops or more is considered to be unreachable or of infinite distance.

Security Management System (SMS)

ALinux management server and Java-based client application for managing multipleX family devices. It provides coordination across your system for administration, configuration, and monitoring, attack filter customization, centralized distribution of upgrades, and enterprise-wide reporting and trend analysis.

Security Profiles

A security profile is used to set up Digital Vaccine filters to monitor traffic passing on one or more virtual segments. The profile consists of category settings for the DV filters along with any user- defined filter overrides and IP address limits/exceptions. After a security profile is created, the device will begin monitoring traffic on the segments included in the profile using the specified the filter settings.

Security Policy

Security Policy refers to all of the mechanisms available on the device to protect and manage network traffic including traffic management profiles, security profiles (Digital Vaccine Filters), DDoS and Traffic Threshold filters. These profiles and filters are configured based on your network deployment and operational policy.

security zone

A security zone is a section of the network which is associated with a port or VLAN. Security zones enable you to logically segment your networks so that the X family device can apply policy rules and IPS filters to control the traffic passing between the zones.

SNMP Server

Provides access to interface counters and other statistics, configuration data, and general system information via the Simple Network Management Protocol (SNMP). The SNMP server must be enabled to use SMS management or to allow NMS access.

spyware filters

Spyware filters detect and block downloads, communications and popups sent via spyware.

312X Family LSM User’s Guide V 2.5.1