360-FAAR (Firewall Analysis Audit and Repair) is an offline, command line, Perl firewall policy manipulation tool to filter, compare to logs, merge, translate, and output firewall commands for new policies, in Checkpoint dbedit, Cisco ASA, or ScreenOS commands. It is all contained in one file. It can read policy and logs for: Checkpoint FW1 (in odumper.csv / logexport format), Netscreen ScreenOS (in get config / syslog format), and Cisco ASA (show run / syslog format). It uses both inclusive and exclusive CIDR and text filters, permitting you to split large policies into smaller ones for virutalization at the same time as removing unused connectivity. It supports policy to log association, object translation, rulebase reordering and simplification, rule moves, and duplicate matching automatically. It allows you to seamlessly move rules to where you need them. 'print' mode creates a spreadsheet for your audit needs with one command.
Proto Balance is a load balancing and traffic management system that can handle up to 10,000 concurrent connections and 20,000 downloads per second. Proto Balance is a load balancer and TCP traffic port forwarder for high availability. It features an easy-to-use Web interface that requires minimal knowledge of networking and no command-line experience. Its target audience includes enterprise cluster providers, Internet service providers, and network administrators.
Firewall Builder for Cisco IOS ACL completes a set of tools designed to manage a multi-tiered network security system. This module can generate access control list configuration for Cisco routers running IOS 12.x. The Firewall Builder GUI's built-in installer uses ssh to communicate with the router to install the generated ACL configuration. Several installation methods are provided to make sure the management workstation is not "cut off" from the router in the middle of ACL activation. Firewall Builder's built-in policy importer can be used to import existing router configurations.
Vanguard provides enterprise class anti-virus and anti-spam protection to multiple internal mail servers, including the Gordano Messaging Suite, Microsoft Exchange, and IBM Lotus Notes/Domino. Dual anti virus scanning engines provide both traditional signature based virus protection and advanced Zero Hour protection. Any number of internal servers can be protected from a single Vanguard server. Each of those servers may be servicing the same Internet domain, separate Internet domains, or even multiple Internet domains on a single server. There is no limit to the number of protected domains or message throughput.
Firekeeper is an intrusion detection and prevention system for Firefox. It is able to detect, block and warn the user about malicious sites. Firekeeper uses flexible rules similar to Snort ones to describe browser-based attack attempts. Rules can also be used to effectively filter different kinds of unwanted content.
The deepOfix Mail Server makes it possible for organizations with minimal technical expertise to have robust server infrastructure. deepOfix offers unprecented ease of use, doesn't require prior GNU/Linux experience and is backed by a full-time development and support team. deepOfix features LDAP-based directory services for user account management, email delivery, distribution lists, and addressbooks. It also includes built in tools for spam and virus control, webmail, and fetching email.
Path Analyzer Pro integrates advanced traceroute software (based on the open-source tool LFT) with performance measurements, DNS, whois, and specialized network resolution to help investigate network issues. It also supports geolocation, and can plot network paths on a map. People use it to research IP addresses, email addresses, and network paths, to graph protocol latency, jitter, and other factors, and to locate firewalls and other filters that may be impacting your connections.
ike-scan discovers IPsec VPN servers, and can fingerprint them using UDP backoff and Vendor ID fingerprinting techniques. It supports IKE Main Mode and Aggressive Mode. ike-scan allows flexible specification of the outgoing IKE packet, and decodes the response packets. It also supports pre-shared key cracking for IKE aggressive mode with pre-shared key authentication.