Intrusion Detection / Intrusion Prevention System: The system actively monitors 12 threat categories viz.,
- Virus / Malware: Botcc / Worm/ Malware/ Mobile Malware
- P2P: P2P / Tor
- Hacking: Exploit / Shellcode
- Internet Traffic: ActiveX/ DNS/ Useragents
- IPs with Bad reputation: Dshield
- Authentication: Each user on the LAN as well as the CAMPUS WiFi is provided with the internet login credentials. No user can have internet access without authentication.
- Bandwidth Profiling: Each user will get a specific bandwidth depending on the profile associative with the user. This will ensure no user or application can consume the entire bandwidth of the campus internet.
- Internet Quotas: Each user is provided with a specific internet usage quota per day. Upon utilization of the allotted quota the user will be automatically logged out of the system. This implementation restricts any malware or miner from continuously sending data from the host to the server.
- Load Balancing: Internet is provided from multiple ISP’s and incase of a line failure the secondary line is automatically activated to provide seamless connectivity
- Link Aggregation: Application optimized routing and aggregation of bandwidths of various ISP to provide maximum bandwidth.
- DDoS Protection: The Gateway and switches can detect & restrict Denial of service attacks
- Legal DHCP Servers: Legal DHCP Servers are defined in the controller. Any client who is not allocated IP from the Legal DHCP Servers will be denied internet access.
