Features |
Description |
| Intrusion Prevention System (IPS) |
The IPS feature monitors network and/or system activities for malicious or unwanted
behavior and can react, in real-time, to block or prevent those activities. MultiNet
SSH, FTP, SNMP, Telnet, IMAP, SMTP, and POP3 have been instrumented with IPS
to monitor traffic for malicious attacks. It is highly flexible and customizable.
When an attack is detected, pre-configured rules will block an intruder’s
IP address from accessing the MultiNet v5.3 system, prevent an intruder from
accessing a specific application, or both. The time period that the filter is
in place is configurable. An API is provided so that MultiNet customers can incorporate
the IPS functionality into their applications.
|
| FTP over TLS (FTPS) |
FTP has been enhanced for higher security allowing for encryption of the communication
between the FTP server and client. This is accomplished via support of RFC 4217.
In general, FTPS has better data transfer rates than SFTP.
|
| Kernel Performance Improvements |
Kernel performance has been improved. Memory utilization is more efficient and
there is now a separate spin lock for Ethernet interfaces reducing lock contention. |
| New IPv6 Application Support |
IPv6 services are available for the following: DNS Resolver, SMTP, POP3, IMAP,
LPD, and STREAM printing. |
| BIND 9.3.2 Server Upgrade to BIND 9.4 Server |
This upgrade includes the following:
- DNS security enhancements
- DNS protocol enhancements
- DNSSEC updates (signed zones)
- Improved standards conformance
|
| SSH Upgrade |
The SSH code base has been upgraded to include a number of bug fixes. |
| Multicast Name Responder |
Resolvers send out a multicast when looking for DNS information (name or address
lookup) and the Multicast Name Responder replies if it knows the information.
Small networks (generally confined to a single building) do not need to set up
a DNS server or maintain a Host File so it reduces the configuration requirements.
The implementation supports both the Microsoft and Unix protocols. |
| Ephemeral Port Randomization |
Typically ports were issued in sequential order, which poses
a security risk. There is the potential for blind attacks, which
can range from throughput-reduction to broken connections or
data corruption. This feature issues random port numbers, which
makes it more difficult for an attacker to guess a local port
number and disrupt communications. |
