Gateway & Desktop Security
Security: Stop known and unknown threats to servers and desktops
Total Traffic Control gives you the power to:
- Stop known viruses, spyware, and malware with virus signatures at the email gateway and host.
- Stop unknown, or "zero-hour," threats by setting "program permissions."
- Easily add your own program permissions, virus signatures and other custom policies.
Total Traffic Control: Security Server
Total Traffic Control: Security Server protects your valuable network resources from unwanted access with its advanced,
stateful inspection of network traffic. Setup wizards and an intuitive interface enable easy creation and review of security policies.
Advanced Stateful-Inspection Firewall. Lightspeed Firewall actively inspects both inbound and outbound network traffic to
determine, based on the configured security policies, whether or not the traffic is allowed. Security policies can be created to manage traffic
by user, group, IP address, application, DiffServ marking, time of day, URL, and many other options.
Application-level Proxies. Also included are application-level proxies for many protocols including HTTP, FTP and SMTP so
that specific commands within these protocols may be allowed or denied at the gateway level. For example, the FTP delete 'DELE' command can be
blocked for all inbound connections from the Internet, quickly securing your files from deletion by unknown users.
Network Address Translation. The Security Server can optionally perform network address translation to mask the internal
network structure from the outside world.
Real-time and Recorded Statistics. These detailed real-time and recorded stats tell the network administrator the status of their
network at any moment, or trends over days or weeks. Reports may be viewed from anywhere with a web browser and include the following:
- Firewall events
- Intrusion log
- Network activity by individual or group
- Network activity by IP address or range of addresses
- Network activity by type of traffic
- And much more
Fault-Tolerant for Mission-Critical Networks. A pair of Security Servers installed on a network eliminates a single point of
failure. The backup server constantly monitors the health of the active appliance and takes over all processing responsibilities if problems
arise – transparent to the end user.
I can't reiterate enough that this has been the best pre-sales support I've ever received.
Aaron Hutton
Technology Director
Desktop Security Agent
Stopping KNOWN threats
Known viruses and spyware are detected using virus signatures. Lightspeed Systems maintains a comprehensive database of
virus/malware signatures and distributes signature updates to you everyday. In case you're wondering just how comprehensive the database is,
check out our Antivirus Quality Checking Report at CompareTTC.com.
Plus local control. What is more, you may locally define any unwanted traffic as a "virus," even if it is technically a
worm, spyware, a peer-to-peer application, or instant messaging application. Creating a virus signature, adding it to the database, and pushing
it out to every client with the TTC Security Agent requires just a few mouse clicks from a running process.
Our district now has approximately 3,000 nodes that are running the Security Agent for antivirus and malware removal, we continue to install more daily. Having the Security Agent installed on our clients has also given access to more accurate and granular reports on our TTC server. While we have only used this feature in a limited fashion, the Security Agent has also allowed us to force Internet filtering policies on desktops and laptops both inside and outside of our network.
Johnathon Foth
Network Systems Engineer, Bakersfield City School District
Stopping UNKNOWN threats
To prevent spyware and unknown, or "zero-hour," threats from doing any damage, Total Traffic Control extends Microsoft's built-in security
for users to programs. That is, like users, programs can be granted permissions and restrictions. Why?
- PCs run by individuals with administrative privileges can be brought to their knees just like any other PC.
- Program permissions are straightforward. Unlike signature-based techniques for detecting and preventing security threats, program
permissions give you direct behavioral control over what programs on your network can and cannot do.
For example, Notepad should never open up on listening ports, talk on the network, spawn other programs, hide itself all over a hard disk,
or add itself to the registry. If it's been modified by a virus and tries to do any of those things, your program permissions will disallow it.
Using a database of applications, including an auto-generated inventory of programs at your site, TTC creates a file ID — a unique
fingerprint — of each valid program on your network. If a virus should modify a known program even one bit, TTC recognizes the change and
treats it as an "unknown program" with your specified permissions/restrictions.
Program Permissions. You can apply any of the following permissions to individual program or to all known or all unknown programs.
Permit program(s) to:
- Talk on the network
- Accept incoming network connections
- Write to another program's memory
- Modify other programs
- Execute other programs
- Modify critical registry entries
- Access critical system files
- Run at users' full security access
Autorun scans. Each PC's autorun is periodically scanned for threats. If the client Security Agent has virus detection turned on,
the virus will be removed from the registry. If program permissions have been applied, those restrictions will be imposed on any startup tasks. If
neither virus detection nor program permissions are being used, a warning message will appear.