Model: NitroView 2200 "All-In-One"

Part #: NS-ESMRCV-R-2250

The NitroView "All-In-One" combines the data collection functions of a 5,000 event-per-second NitroView Receiver with the Unified Security Management functions of NitroView ESM.

The NitroView 2200 "All-In-One" provides a single-box solution for the deployment of full USM capabilities, including :

  • Collection of Alerts, Flows, and Logs
  • Log Managment
  • Security Event Management (SEM)
  • Security Information Management (SIM)
  • Network Behavior Analysis (NBA)
  • Anomaly Detection

NitroView "All-In-One" is an essential tool in managing the data needed for regulatory compliance efforts, including GLBA, HIPAA, FERPA, FISMA, SoX, and PCI. Easily use NitroView's granular data stores to generate compliance reports using pre-defined templates or custom reports. Because NitroView preserves more data over time than most SIEM systems, the validity of each report is maintained over the entire audit history.

Specifications

Operating Modes

  • Network Flow collection, analysis and correlation
  • Security Event collection, analysis and correlation
  • Log collection, analysis and correlation
  • Common data management for flow, event, and log data for cross-analysis and correaltion of disparate data types

Analysis Methods

  • Counts, Sums, Averages
  • Time Correlation of data for baselines, Trends, Deviations
  • Time Correlaton for historical context of log, event, flow data
  • Data Correlation for situational context of log, event, flow data

Management Functions

  • Log Management
  • Security Information Management (SIM)
  • Security Event Management (SEM)
  • Network Flow Analysis
  • Network and/or Event Anomaly Detection
  • Network Capacity Planning
  • Compliance Reporting
  • "Manager of Managers" for third-party event management

Dimensions

  • size: 1.75"H x 17.5"W x 27"D

Power

  • power: 200W, 100/240 VAC, 50/60Hz
  • vibration: ASTM D 999-86

Certifications & Safety

  • safety: EN 60950/IEC 60950-Compliant, UL Listed (USA), CUL Listed (Canada), TUV Certified (Germany), CE Marking (Europe)
  • regulatory: FCC Class B, EN 55022 Class B, EN 61000-3-2/-3-3, CISPR 22 Class B
  • common_criteria: v2.3 EAL3

Performance Specifications

  • processor(s): 2 x 2.66GHz (dual core)
  • memory: 4GB
  • total storage: 1 TB
  • usable storage (after RAID): 0.5 TB
  • number of drives: 2
  • events per second: 5,000
  • concurrent sessions: 1,200,000

Fail Safe Features

  • RAID Storage
  • Redundant Power

Compliance Reporting

Visit our Compliance page for more detail on regulatory compliance and reporting, including sample reports.

  • NitroView Report: SOX - System Test Data, Source Code Access, Logon Activity, Account Reports, Admin & Control of Systems, etc.
  • NitroView Report: PCI - Log initiation, Admin activity, Access to Card Holder Data, etc
  • NitroView Report: NISPOM - User Account Deletion, Pasword Events, System Access, etc.
  • NitroView Report: HIPAA - User Access, Logins, Modifications, Policies, EMR Access, etc.
  • NitroView Report: GLBA - User Access to Customer Data, Policy & Password events, Admin access and activity, etc.
  • NitroView Report: FISMA - Session Terms, Login failures, Disabled Accounts, etc.
  • NitroView Report: BASEL II - System Test Data, Source Code Access, Password and Login events, Foreign Domain activity, Control of Audit, Software, Evidence, etc.
  • NitroView Report: Applications - Mindows User Rights Modification, System Reboots, Domain Modifications, etc.
  • ... and more

    • Supported Third party Feeds

  • NitroSecurity, NitroSecurity SNMP
  • NitroSecurity, NitroGuard IPS
  • NitroSecurity, NitroGuard IPS
  • NitroSecurity, NitroGuard IPS
  • NitroSecurity, nitroFlow
  • Cisco, NetFlow
  • sFlow, sFlow
  • Juniper, jFlow
  • Check Point, Check Point Edge W32 and WU, opsec
  • Check Point, Check Point VPN-1 Edge, v4.x, opsec
  • Check Point, Check Point Smart Center Enterprise Pro, opsec
  • Check Point, Check Point Enterprise and Enterprise Pro, opsec
  • Check Point, Check Point FW-1 Limited, v4.0(sp5), v41(sp1), opsec
  • Check Point, Check Point FW1, NG, NGX Standard All versions, opsec
  • Check Point, Check Point HA VPN-1 v4.0(sp5), v41(sp1), opsec
  • Check Point, Check Point VPN Pro v4.0(sp5), v41(sp1), opsec
  • Check Point, Check Point VPN-1 Express v4.0(sp5), v41(sp1) opsec
  • Check Point, Check Point Express opsec
  • Cisco, Cisco IDS (4.x+ protocol) v4.2(2), RDEP, SDEE
  • Cisco, Cisco IDS Stand-alone (3.x protocol), syslog
  • Cisco, Cisco Routers/Switch ACL, IOS FW and IOS IDS (3.x protocol) syslog
  • Cisco, Cisco 6xxx Routers/Switch ACL, IOS FW and IOS IDS (3.x protocol) syslog
  • Cisco, Cisco 7xxx Routers/Switch ACL, IOS FW and IOS IDS (3.x protocol) syslog
  • Cisco, Cisco ASA v4.x -v7.x syslog
  • Cisco, Cisco PIX 501, 505, 506, 506E, 515, 520, 535 v4.x -v7.x syslog
  • Cisco, Cisco VPN Concentrator v4.x -v7.x syslog
  • CyberGuard, CyberGuard FS v4.2,v4.3, v5.0 syslog
  • CyberGuard, CyberGuard SGv4.2,v4.3,v5.0, syslog
  • CyberGuard, CyberGuard SL v4.2,v4.3,v5.0, syslog
  • Fortinet, Fortinet FortiGate v2.5 and v2.8 syslog
  • Gauntlet, Gauntlet Firewall syslog
  • Hewlett Packard, HP ProCurve all models firmware 7.x and 8.x syslog
  • Juniper Networks, Juniper Netscreen SSL VPN syslog
    • Juniper Networks, Juniper Netscreen Firewalls (all series) syslog
    • Juniper Networks, Netscreen-IDP syslog
    • Juniper Networks, Jun OS Routers
    • Juniper Networks, IC4000, IC6000 V2.0
    • McAfee, IntruShield / WebShield syslog
    • Nokia, Nokia IP syslog
    • Nortel Networks, Contivity VPN syslog
    • Secure Computing, Sidewinder G2 syslog
    • Snort, IDS Sensor (all models) syslog
    • SonicWALL, Firewall v4.1 and v5.x syslog
    • SourceFire, NS syslog
    • Symantec, Symantec Enterprise Firewall (syslog only) v7.04 syslog
    • Symantec, Symantec Gateway Security (syslog only) v7.0 and v8.0 syslog
    • TippingPoint, TippingPoint Unity syslog
    • TopLayer, TopLayer Attack Mitigator v3.x syslog
    • IronMail, All models
    • IronPort, All models
    • McAfee, WebShield Version 1.8 and above
    • SideWinder, All models All ver syslog
    • WatchGuard, Firebox and X series firmware 4.x through 7.5
    • Microsoft, Exchange 2000 and 2003 WMI
    • BalaBit, Syslog NG Solaris 2.6, 2.7 (Unix) syslog
    • Enterasys, Dragon 2.x and above
    • Foundry, Pending support
    • Extreme, BlackDiamond, Alpine and Summit versions 6.x and above
    • Barracuda, All models firmware 2.x and above
    • BlueCoat, SG All models firmware 2.x and above
    • Linux, Red Hat and Generic Linux formats, Redhat Enterprise 4.x and 5.x, Fedora 4.x, 5.x and 6.x
    • Novell, Novell Netware Version 5.x through 6.5
    • NitroSecurity, Custom Syslog Parser
    • Microsoft, Windows (WMI)
    • Microsoft, Windows (WMI)
    • Airdefense, Airdefense
    • Apache, Apache
    • Apache, Apache
    • Apache, Apache
    • Arbor, Peakflow DoS
    • Arbor, Peakflow X
    • Cisco, CatOS
    • Cisco, CatOS
    • Cisco, Cisco ACS
    • Cisco, Cisco CCA
    • Cisco, Cisco Clean Access
    • Cisco, Cisco Content Engine
    • Cisco, Cisco CSA
    • Cisco, Cisco CSA
    • eEye, Retina Scanner
    • Enterasys, Dragon
    • Enterasys, Dragon Sensor
    • Entercept, Entercept HIDS
    • Entercept, Entercept HIDS
    • Harris, Stat Scanner Professional Edition
    • HP, HP-UX (Hewlett-Packard)
    • HP, HP-UX (Hewlett-Packard)
    • HP, HP-UX (Hewlett-Packard)
    • IBM, AIX OS
    • IBM, AIX OS
    • Info Express, Cyber Gatekeeper LAN
    • Info Express, Cyber Gatekeeper LAN
    • IBM, ISS Desktop Protector
    • IBM, ISS Desktop Protector
    • IBM, ISS Internet Scanner
    • IBM, ISS Real Secure Network Sensor
    • IBM, ISS Real Secure Server Sensor
    • Juniper, Netscreen Security Manager
    • LANcope, Stealth Watch
    • McAfee, ePolicy Orchestrator (EPO)
    • McAfee, ePolicy Orchestrator (EPO)
    • McAfee, Foundstone Scanner
    • McAfee, Virus Scan
    • Microsoft, IIS
    • Microsoft, IIS
    • Microsoft, ISA
    • Microsoft, ISA
    • Microsoft, ISA
    • Microsoft, ISA
    • Microsoft, ISA Server
    • Microsoft, ISA Server
    • Microsoft, ISA Server
    • Microsoft, Operations Manager
    • Microsoft, Microsoft SQL Server
    • Mirage, Counterpoint
    • nCircle, IP360 Scanner
    • Nessus, Nessus Scanner
    • NetForensics, DataOne
    • netIQ, Security Manager
    • Netscape, Enterprise Web Server
    • Netscape, Enterprise Web Server
    • Oracle, Oracle
    • Qualys, Qualys Guard Scanner
    • Radware, DefensePro
    • Red Hat, Red Hat Linux OS Events
    • Red Hat, Red Hat Linux OS Events
    • Red Hat, Red Hat Linux OS Events
    • Rippletech, Rippletech Informant
    • NitroSecurity, NitroGuard Database Monitor
    • RSA, Authentication Manager
    • Solaris, Solaris OS Events
    • Solaris, Solaris OS Events
    • Squid, Squid Proxy
    • Stonesoft, Stonegate Firewall
    • Stonesoft, Stonegate IPS
    • Symantec, Symantec Anti Virus
    • Symantec, Symantec Endpoint Security
    • Symantec, Symantec Enterprise VPN
    • Symantec, Symantec HIDS
    • Symantec, Symantec HIDS
    • Symantec, Symantec Intruder Alert
    • Symantec, Symantec Intruder Alert
    • Symantec, Symantec Mail Security for SMTP
    • Symantec, Symantec ManHunt
    • Trend Micro, Trend Micro Control Manager (IMSS, IWSS)
    • Trend Micro, Trend Micro Control Manager (IMSS, IWSS)
    • Trend Micro, Trend Micro Control Manager
    • Trend Micro, Trend Micro Control Manager
    • Tripwire, Tripwire For Server
    • Tripwire, Tripwire NIDS
    • Type 80, SMA_RT
    • Type 80, SMA_RT
    • Websense, Websense Enterprise
    • Zonelabs, Integrity




    These icons link to social bookmarking sites to help share this content.
    • share this page:
    • bodytext
    • del.icio.us
    • Reddit
    • Slashdot
    • Technorati
    • Propeller