Trellix Intrusion Prevention System (IPS) is a cutting-edge network security solution that combines advanced detection techniques with high-performance capabilities to protect against sophisticated malware threats. It goes beyond traditional pattern matching, employing both signature-based and signature-less detection methods to identify and block stealthy attacks across various network environments The system is designed to seamlessly integrate into hybrid network architectures, supporting on-premises, virtual, and cloud deployments. With its scalable architecture, Trellix IPS can automatically adjust to meet the demands of elastic workloads and offers on-premises appliances that can handle up to 100 Gbps of traffic

Key Features

Advanced Detection Capabilities Trellix IPS utilizes a combination of signature-based and signature-less detection techniques to provide comprehensive protection against known and unknown threats.

• Multiple detection methods integrated into a single solution
• Signature-less intrusion detection for identifying malicious network traffic without existing signatures

Scalable Architecture The system is designed to adapt to various network environments and growing security needs.

• Supports hybrid networks including on-premises, virtual, and cloud deployments
• Automatic scaling for elastic workloads
• On-premises appliances capable of handling up to 100 Gbps of traffic

Integration with Other Security Tools Trellix IPS works in conjunction with other security solutions to enhance overall threat detection and response.

• Integrates with Trellix Intelligent Sandbox for in-depth threat analysis
• Combines with Trellix Enterprise Security Manager for real-time correlation of network events

Benefits

Improved Threat Detection and Prevention The system offers enhanced protection against a wide range of cyber threats.

• Detects and blocks sophisticated malware and stealthy attacks
• Provides protection against DDoS attacks, command and control callbacks, and other network-based threats

Enhanced Network Visibility Trellix IPS provides deep insights into network traffic and application usage.

• Layer 7 visibility of more than 2,000 applications and protocols
• User and device visibility for prioritizing risky hosts and users
• Identification of anomalous network behavior, including active botnets

High Performance and Availability The solution ensures robust security without compromising network performance.

• Maintains performance regardless of security settings
• Offers active-active and active-passive modes with stateful failover for high availability