HPE Community
Software Defined Networking
1752806 Members
6510 Online
108789 Solutions
New Discussion

SDN Network Protector; user points to remote IP host instead

 
lee_sa2
Occasional Contributor

‎10-26-2015 12:25 AM - edited ‎10-26-2015 12:35 AM

‎10-26-2015 12:25 AM - edited ‎10-26-2015 12:35 AM

SDN Network Protector; user points to remote IP host instead

Hi,

 

As I saw in the HP SDN Network Protector info, it would get DNS traffic by using OpenFlow switch. OpenFlow switch like 2920 can send a user entering a web site(DNS info) to Protector and examines it.

 

If some smart users enter a remote malicious website by using IP address instead, does Network Protector still examine for those users for that site?   

 

 

 

Thanks,

S. Lee.

0 Kudos
1 REPLY 1
ShaunWackerly
HPE Pro

‎04-22-2016 01:41 PM

‎04-22-2016 01:41 PM

Re: SDN Network Protector; user points to remote IP host instead

To my knowledge, the current release of Network Protector will not inspect traffic sent directly to an IP address. The Network Protector application inspects DNS packets, so if the user circumvents that process by accessing an IP address directly, Network Protector will not inspect their packets.

Other current and future solutions by HPE may provide the inspection capabilities you're looking for, but presently Network Protector does not provide that level of inspection.

I am an HPE Employee
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.