Version 5.2 Sourcefire 3D System User Guide 270
health monitor
to
intrusion detection and prevention
Glossary
health monitor A feature that continuously monitors the performance of the appliances in your
deployment. The health monitor uses health modules within an applied health
policy to test the appliances.
health policy The criteria used when checking the health of an appliance in your deployment.
Health policies use health modules to indicate whether your Sourcefire 3D
System hardware and software are working correctly. You can use the default
health policy or create your own.
high availability A feature that allows you to configure redundant physical Defense Centers to
manage groups of devices. Event data streams from managed devices to both
Defense Centers and most configuration elements are maintained on both
Defense Centers. If your primary Defense Center fails, you can monitor your
network without interruption using the secondary Defense Center. Compare with
clustering, which allows you to designate redundant devices.
host A device that is connected to a network and has a unique IP address. To the
Sourcefire 3D System, a host is any identified host that is not categorized as a
mobile device, bridge, router, NAT device, or logical interface.
host input A feature that allows you to import data from third-party sources using scripts or
command-line files to augment the information in the network map. The web
interface also provides some host input functionality; you can modify operating
system or application protocol identities, validate or invalidate vulnerabilities, and
delete various items from the network map, including clients and server ports.
hybrid interface A logical interface on a managed device that allows the system to bridge traffic
between a virtual router and a virtual switch.
import A method that you can use to transfer various configurations from appliance to
appliance. You can import configurations that you previously exported from
another appliance of the same type.
inline deployment A deployment of the Sourcefire 3D System where your managed devices are
placed inline on a network. In this configuration, devices can affect network traffic
flow using switching, routing, access control, and intrusion detection and
prevention.
inline interface A sensing interface configured to handle traffic in an inline deployment. You must
add inline interfaces to inline sets in pairs.
inline set One or more pairs of inline interfaces.
intrusion A security breach, attack, or exploit that occurs on your network.
intrusion detection
and prevention
The monitoring of your network traffic for security policy violations, and, in inline
deployments, the ability to block or alter malicious traffic. In the Sourcefire 3D
To Next Page
Loading...