is capable of integrating other information management systems and can
be used to block network access of designated endpoint device.
UPAS-IPCut uses ARP redirection to block network access and no agent is
required to be installed on the device being managed beforehand.
Depends on the policy defined, the network access to local network or
internet is going to be blocked. IP addresses in the whitelist will not
be blocked even if the threshold has been crossed, and this whitelist
provides the administrator flexibilities in management.|
1.With the help of ARP redirection, the network architecture could
remain unchanged when deploying UPAS-IPCut. UPAS-IPCut also supports
802.1Q and is capable of managing multiple VLANs from one single trunk
2.UPAS-IPCut exclusively provides six methods to block network access:
HostCut, GatewayCut, Request, Reply, GRequest, and GReply. UPAS-IPCut
supports network devices, operating systems, and anti-virus from
3.'Redirection Page' helps to notify the user the reason why his network access has been denied.
4.XML or syslog-based messages are supported when 3rd-party security management systems communicate with UPAS-IPCut.
5. Provides 3rd-party security management system the ability to block network access
1.Traditionally, security management systems (e.g. S.O.C.) provide
sources of security incidents but can not block traffic from/to these
sources. This limitation could be eliminated once these systems are
integrated with UPAS-IPCut, and lower the security risk immediately.
2.The following products has been integrated and tested: Splunk、ArcSight、Symantec