Colubris RF Manager
|
FEATURES |
| Automatically classifies all wireless devices | |
| Simultaneously detects and prevents threats from rogue and misconfigured access points, ad hoc connections, unauthorized client connections, client mis-associations, honeypot/evil twin attacks, MAC spoofing, and denial of service attacks | |
| Graphically displays AP and sensor coverage on floor plans | |
| High resolution location algorithm identifies threat sources on floor plans | |
| Delivers alerts for more than 140 events | |
| Enables step-by-step troubleshooting for client performance and connectivity issues | |
| Creates compliance reports for Sarbanes-Oxley, HIPAA, Gramm-Leach-Bliley, and DoD Directive 1800.2 | |
| Scales easily for enterprise networks |
| DESCRIPTION |
Wireless LAN networks are subject to security threats that cannot be intercepted and neutralized by conventional firewall and VPN security systems. Insecure deployments of WLAN rogue access points – whether done maliciously or not – can leave networks vulnerable to potential hackers, exposing confidential information and putting organizations at risk – operationally, financially, and legally. Client mis-associations may lead to additional vulnerabilities. The RF Manager solves these problems by delivering the same comprehensive protection as a wired firewall and IPS to the wireless network environment. In addition to automatically identifying and preventing security risks and attacks, it provides real-time network audits, assists in performance troubleshooting, and monitors the overall health of wireless LANs. |
| RF MANAGER MODELS | |||
| Basic | Enterprise | Sensor Capacity Upgrade | |
| Base Sensor Support | 50 | 100 | 50 incremental |
| Maximum Sensor Capacity | 100 | 200 | N.A. |
| Platform | 1300 | 1500 | N.A. |
| RF MANAGER PLATFORMS | ||
| Model | 1300 | 1500 |
| CPU | Xeon | Dual Xeon |
| Memory | 1GB | 2GB |
| Storage | 80GB SATA | 80GB SATA |
| Power Requirements (max.) | 450W | 600W |
| RF MANAGER PLATFORM SPECIFICATIONS | |
| Power Inputs | 100-240 VAC, 50/60 Hz |
| Network Ports | (2) auto-sensing 802.3 10/100/1000 BASE-T (1) RJ-45 serial port with DB-9 adapter |
| Status LEDs | Power, storage activity, Ethernet activity |
| Temperature Range | Operating: 0°C to 50°C |
| Humidity | 5% to 95% typical (non-condensing) |
| Regulatory Approvals | FCC Part 15-Subpart B (Class A), CSA NRTL (C22.2 No 950, UL 1950), Canada Class A ICES-003, Industry Canada ICES03, Australia and New Zealand, Class A, United Kingdom NS/G/1234/J/100003, EU EMC Directive 89/336/EEC, Class A CISPR 22/EN55022, EN6100-3-2, EN 6100-3-3, EN 55024, Japan VCCI |
| Overall Physical Dimensions | H: 4.4 cm; L: 43.7 cm; W: 42.8 cm; Shipping Weight: 18 Kg |
| TECHNICAL SPECIFICATIONS | |
| WLAN IPS | |
| Wireless Protocols Supported | 802.11b, 802.11b/g, 802.11a |
| Protocol Inspection for Security and Authentication Method | Encryption: WEP, TKIP, CCMP |
| Authentication | 802.1x, WPA, WPA2 |
| Third-Party AP Discovery | 3Com, Cisco, D-Link, Linksys, Netgear, Proxim, Symbol and many others |
| Automatic SSID Discovery | Yes |
| Auto-classification of Devices | APs: Authorized, rogue APs, external APs, insecure (misconfigured) APs, soft APs. Clients: Any client type embedded or standalone, authorized or unauthorized |
| Automatic Intrusion Prevention | Rogue APs, insecure (misconfigured) APs, authorized clients connecting to external WLAN networks, ad hoc networks, MAC spoofing, Evil Twin/honeypot APs |
| Denial of Service Prevention | Authentication flood, deauthentication flood, association flood, disassociation flood, EAPOL floods and others |
| Prevention Level | Selectable; "Deter" to "Complete Blocking" |
| Simultaneous Scanning and Prevention of Attacks | Yes, with protection for up to 5 simultaneous attacks per sensor |
| Location Tracking | |
| Floorplan Mapping | APs and clients; authorized and unauthorized |
| Display Method | Distance from sensors; probability plot on floorplan |
| Planning | |
| Input Method | Scanned floorplan, location of APs and sensors (drag and drop) |
| Planning Views | WLAN network: Link speed, capacity, redundancy, RF spillage. Security sensor network: Coverage |
| Scenario Analysis | Channel allocation, output power, protocol selection (.11a, .11b or .11g) |
| Calibration | Automatic feedback to improve prediction accuracy |
| Monitoring and Reporting | |
| Real-time Coverage Maps | Real-time RF and security sensor coverage maps |
| RF Coverage Statistics | Dynamic display of signal strength, channel allocation, link speed at any point |
| Alerts | Over 140 security and performance alerts |
| Alerting Method | Email, SNMP, Syslog |
| Regulatory Compliance Reports | Sarbanes-Oxley, Health Insurance Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley, DoD Directive 8100.2 |
| Standard Report Types | Wireless device inventory, location |
| Customizable Reports | Build custom reports based on query(ies) of database for event type, client type, and many others. |
| Automatic Report Generation Interval | Set specific day, hour and repeating frequency with customizable delivery options. |
| System Management | |
| Management Interfaces | Web (SSL) |
| Rapid Deployment | Wizard |
| Network | |
| Server and Sensor Interface | Auto-sensing 10/100 Ethernet |
| IP Address Assignment | DHCP or static |
| Server and Sensor Communication | IP |
| Sensor | InReach 330 Sensor, sold separately |
| PART NUMBER | |
| RF Manager 1500 Enterprise | 80-15-0099 |
| RF Manager 1300 Basic | 80-13-0099 |
