Print | Rate this content

HP S Intrusion Prevention System (IPS) Series - Product Overview

Information

The HP S Intrusion Prevention System (IPS) Series is optimized for performance and reliability at 20, 100, and 300 Mb/s with very flexible deployment options. For perimeter protection, the solutions can be deployed in front of or behind a router/firewall to immediately protect the network and applications from inbound threats. Deployment between network zones provides isolation and protects sensitive zones from internal attacks. HPE IPS solutions are designed to preserve availability, performance, and security for enterprises and service providers alike. They give service providers more flexibility for general or dedicated protection for their users' assets. The series also has integrated Zero Power High Availability (ZPHA) so that a simple power failure does not cause a network outage. This series complements other HPE IPS solutions, which provide network protection in high-bandwidth locations such as the core network and data center.

  • Industry-proven proactive network security

  • Up-to-date and broad IPS protection

  • Industry-leading security research team - DVLabs

  • Minimized overall security costs and complexity

  • Security compliance best practices

Details

Technical features:

  • Proven in-line threat protection:

    Since 2001, HPE TippingPoint has been laser-focused on creating IPS solutions that provide proactive, in-line network protection while ensuring high network performance and availability. No network security solution remains in-line long if it compromises network performance or uptime. According to a 2008 study by Infonetics Research, more enterprise IPS users use our IPS solutions in-line than any other.

  • Proven reliability and redundancy:

    The S10, S110, and S330 IPSs are designed to deliver unparalleled high availability. This ensures that network traffic always flows at wire speed even in the event of network or internal device error, or complete power loss. There are two complementary high availability modes of operation - Intrinsic High Availability and Stateful Network Redundancy. And with integrated Zero Power High Availability (ZPHA), a simple power failure does not cause a network outage.

  • Best-in-class remote office security:

    The S10 IPS is optimized for sub 20 Mb/s link speeds that are predominant in business DSL and metro Ethernet services. The solution can be deployed in front of or behind the remote location's router/firewall, immediately protecting the network and applications from inbound threats. The S10 IPS is designed to preserve availability and to increase performance and security on remote office networks.

  • Industry-leading security coverage:

    The S10, S110, and S330 IPSs receive automated security updates from the Digital Vaccine Service, ensuring evergreen (always up-to-date) protection against emerging threats. Digital Vaccines are created not only to address specific exploits, but also potential attack permutations, protecting users from zero-day threats. Digital Vaccines are delivered to users at least two times a week and can be deployed automatically with no local user interaction.

  • Comprehensive traffic flow inspection:

    The IPS provides comprehensive flow inspection through Layer 7 to cleanse Internet and intranet traffic and eradicate attacks before damage occurs to protected systems. In fact, the HPE TippingPoint IPS solutions are known for their pinpoint accuracy in blocking attacks, meaning no legitimate traffic is blocked.

  • Broad network asset protection:

    HPE TippingPoint IPS solutions protect a broad range of network infrastructure including routers, switches, DNS and email servers, Web and enterprise application servers, and much more. HPE TippingPoint solutions provide the best vulnerability coverage in the IPS industry, including protection of Cisco, Microsoft, Sun O/S, EMC, SAP, CA, Mozilla, Novell, Oracle, Apple O/S, Citrix O/S, Adobe, IBM, and many other enterprise applications.

  • Reduced overall costs and complexity:

    HPE TippingPoint IPSs block attacks and allow IT staff to spend time on strategic projects instead of reacting to security breaches on hosts and workstations. The S10, S110, and S330 IPSs provide network segmentation to stop the spread of malicious traffic from infected users, while notifying IT administrators where attacks are originating.

  • Traffic management preserves network bandwidth:

    The HPE TippingPoint IPS also provides traffic management to stop bandwidth hogging applications like peer-to-peer, instant messaging, and streaming media. The IPS provides the ability to block or rate-limit these applications, preserving network bandwidth and network device capacity.

  • Rapid network and remote office installation:

    The HPE TippingPoint IPS is easily installed in both large corporate and remote office networks. In remote office networks the IPS is easily installed by local personnel in minutes and immediately begins filtering out malicious and unwanted traffic. The IPS is deployed seamlessly with no IP or MAC address configurations, and all systems ship with "Recommended Settings", meaning no "out-of-the-box" configurations are required locally.

  • Easy to manage:

    The HPE TippingPoint IPS solutions are easily managed with the Security Management System (SMS) that discovers, monitors, configures, diagnoses, and reports on multiple IPS systems. In addition, every IPS has a Command-Line Interface (CLI) and an embedded local security manager (LSM) that provides local administration, configuration, and reporting in an easy-to-use web interface.

  • Best practices for security compliance:

    The HPE TippingPoint IPS can be a critical component in an IT compliance program. Today's organizations deal with increasingly stringent security policies in the face of an ever-changing threat landscape and increasing regulatory requirements. With these pressures, the IPS provides automated enforcement of network security policies, and reporting from the IPS and SMS shows internal and external auditors how the network is being protected.

Models specifications:

Features
HPE S10 20 Mb/s IPS (JC184A)
HPE S110 100 Mb/s IPS (JC186A)
HPE S330 300 Mb/s IPS (JC187A)
Ports
4 RJ-45 autosensing 10/100/1000 ports (IEEE 802.3 Type 10BASE-T, IEEE 802.3u Type 100BASE-TX, IEEE 802.3ab Type 1000BASE-T)
Duplex: 10BASE-T/100BASE-TX: half or full; 1000BASE-T: full only
8 RJ-45 autosensing 10/100/1000 ports (IEEE 802.3 Type 10BASE-T, IEEE 802.3u Type 100BASE-TX, IEEE 802.3ab Type 1000BASE-T)
Duplex: 10BASE-T/100BASE-TX: half or full; 1000BASE-T: full only
8 RJ-45 autosensing 10/100/1000 ports (IEEE 802.3 Type 10BASE-T, IEEE 802.3u Type 100BASE-TX, IEEE 802.3ab Type 1000BASE-T)
Duplex: 10BASE-T/100BASE-TX: half or full; 1000BASE-T: full only
Dimensions (d x w x h)
18.75 x 27 x 5.13 cm (7.38 x 10.63 x 2.02 in) (2U height)
46.36 x 42.55 x 4.42 cm (18.25 x 16.75 x 1.74 in) (1U height)
46.36 x 42.55 x 4.42 cm (18.25 x 16.75 x 1.74 in) (1U height)
Weight
2.49 kg (5.49 lb)
6.8 kg (14.99 lb)
6.8 kg (14.99 lb)
Mounting
19- or 23-inch wide rack (ears provided)
19- or 23-inch wide rack (ears provided)
Latency
< 600 µs
< 600 µs
< 600 µs
IPS/IDS throughput
20 Mb/s
100 Mb/s
300 Mb/s
Network throughput
20 Mb/s
100 Mb/s
300 Mb/s
Security contexts
250,000
250,000
250,000
Connections per second
3600+
9700
18,500
Concurrent sessions
1,000,000
1,000,000
1,000,000
Voltage
100 - 240 V ac
100 - 240 V ac
100 - 240 V ac
Current
1.8 A
3/2 A
6/3 A
Frequency
50/60 Hz
50/60 Hz
50/60 Hz
Safety
UL 60950-1; EN 60825-1 Safety of Laser Products-Part 1; EN 60825-2 Safety of Laser Products-Part 2; IEC 60950-1; EN 60950-1; CSA 22.2 60950-1; ROHS Compliance
UL 60950-1; EN 60825-1 Safety of Laser Products-Part 1; EN 60825-2 Safety of Laser Products-Part 2; IEC 60950-1; EN 60950-1; CSA 22.2 60950-1; ROHS Compliance
UL 60950-1; EN 60825-1 Safety of Laser Products-Part 1; EN 60825-2 Safety of Laser Products-Part 2; IEC 60950-1; EN 60950-1; CSA 22.2 60950-1; ROHS Compliance

Emissions:

FCC Class A; VCCI Class A; EN 55022 Class A; AS/NZS 3548 Class A; ICES-003 Class A

Immunity:

  • ESD: EN 61000-4-2

  • Radiated: EN 61000-4-3

  • EFT/Burst: EN 61000-4-4

  • Surge: EN 61000-4-5

  • Conducted: EN 61000-4-6

  • Voltage dips and interruptions: EN 61000-4-11

  • Harmonics: EN 61000-3-2

  • Flicker: EN 61000-3-3

Notes:

Emissions for S10:

  • FCC Class B

  • ICES-003, Class B

  • EN 55022 Class B

  • VCCI Class B

  • AS/NZS-3548 Class B

The above information can be found at the following URL:

 Non-HPE site Click here to access information on HP S Intrusion Prevention System (IPS) Series Non-HPE site .

NOTE: One or more of the links above will take you outside the Hewlett-Packard Enterprise Web site, HPE does not control and is not responsible for information outside of the HPE Web site.

Legal Disclaimer: Products sold prior to the November 1, 2015 separation of Hewlett-Packard Company into Hewlett Packard Enterprise Company and HP Inc. may have older product names and model numbers that differ from current models.

Provide feedback

Please rate the information on this page to help us improve our content. Thank you!
Document title: HP S Intrusion Prevention System (IPS) Series - Product Overview
Document ID: emr_na-c03460052-2
How helpful was this document?
How can we improve this document?
Note: Only English language comments can be accepted at this time.
Please wait while we process your request.