Details of Logo 02-C-000860

TOP > 02-C-000860

CN-2-C-20120815-000203

Logo ID 02-C-000860
Approved Date 2012/10/19
Application ID CN-2-C-20120815-000203
Applied Date 2012/08/15
Usage Agreement Agreed
OEM Licensor's Logo ID -
Note -
Target Information
Test Category Core Protocols
Vendor Name QI-ANXIN Legendsec Information Technology (Beijing) Inc.
Country CN
Product Name (original) Legendsec SecIPS 3600 Intrusion Prevention System
Product Version (original) V1.1.2
Product Description (original) Legendsec SecIPS 3600 provides powerful intrusion prevention service. It can work well in in IPV6 network in all fields including protocol analysis, access control, device management, intrusion prevention and so on and can defend most kinds of network attacks such as ddos, worm, botnet, trojan in IPV6 network.
Product Name Legendsec SecIPS 3600 Intrusion Prevention System
Product Version V1.1.2
Product Classification Host
Product Description Legendsec SecIPS 3600 intrusion prevention system is a network security device that can monitor the network data transmission behavior of the network or network equipment, and can immediately interrupt, adjust or isolate some abnormal or harmful network transmission behavior.
Legendsec SecIPS 3600 intrusion prevention system is redefined on the basis of basic functions. The product relies on an efficient integrated engine to realize the flow analysis of the protected network, the alarm and blocking of abnormal or attack behavior, the security protection control of layer 2-7, and the visual display of user behavior and network health.
Legendsec SecIPS 3600 intrusion prevention system can not only detect attacks, but also automatically and real-time execute defense strategies to effectively ensure the security of information system. Therefore, for the attack characteristics, the accuracy, timeliness, comprehensiveness and efficiency of identification are the necessary conditions for an intrusion prevention product.
Vendor's Note
    1. Transmitting Echo Requests and configuring packet size are not well supported by the product,so in the test, the product doesn't transmit any ICMPV6 Echo Request.
2. Multicast Routing and MTU Configuration are not well supported by the product, so these cases about the two functions do not have result.
3. In Test IP6Interop.1.6 Path MTU discovery and Fragment Mention, the first fragmented packet will be losted when target host or router use NS/NA to discover a neighbor. This problem is not caused by the NUT.
Test Information Test Specification 4.0.6
Interoperability Test Scneario 4.0.4
Information for Series of Product
Interoperable
Devices
Router
1 Vendor Name Ubuntu Project
Device Name Ubuntu 7.10
Version 2.6.15-26
2 Vendor Name The KAME Project
Device Name KAME on FreeBSD 6.2-RELEASE
Version kame-20060116-freebsd54-snap
Host
1 Vendor Name The FreeBSD Project
Device Name FreeBSD
Version 7.1-RELEASE-p15
2 Vendor Name USAGI Project
Device Name USAGI
Version usagi-linux26-s20060327
Target supporting
Advanced Functions:
- Transmitting Echo Requests(Passive Node)
- Configuring Multicast Packet Size
- Multicast Routing(Router Only)
- RFC 4191 Type C Host(Host Only)
- Duplicate Overlapping Fragments
- Beyond Scope of Source Address(Router Only)
- Tracking Connections for ICMPv6
- Router Advertisement DNS (Host Only)