Page 33 - ASCCS V8.1 3v02a_delegate version_Neat
P. 33

Threat    On-premise Layer 4 Traffic Monitor
Protection
            Infected Endpoint Detection

Users       Packet and                                                   Layer 4 Traffic Monitor
              Header
                                                                                     Preventing
            Inspection                                                        ‘Phone-Home’ Traffic

                        Network                       Internet          Scans all traffic, all ports, all protocols
                        Layer                                           Detects malware bypassing Port 80
                        Analysis                                        Prevents Botnet traffic

            Cisco
            WSA

Allowed:    IP addresses within a ‘White List’ (overrides everything)

Unlisted:   IP address or Hostname not in database                                                                Known
                                                                                                                 Malware
Ambiguous:  IP address shared with Unlisted Hostname                                   Unlisted   Ambiguous     (Black List)
            AND Known Malware Hostname                                                 (Unknown)   (Grey List)

Known Malware: IP address or Hostname known to host malware             Allowed
                                                                       (White List)
   28   29   30   31   32   33   34   35   36   37   38