Features and Benefits
'
The CommandCenter NOC 2500 series integrates world-class network and systems management, traffic analysis, vulnerability scanning, intrusion detection, asset management, notification and reporting functionality into a series of three easy-to-deploy appliances.
The CommandCenter NOC 2500 series keeps your IT infrastructure under constant scrutiny, guarding against network outages, degradation, performance slowdowns, security weaknesses and incoming attacks.
It ensures quick response to incidents with notifications that can automatically escalate, and helps implement your company's IT compliance strategy and tactics via integrated management dashboards and reports, giving IT decision makers actionable intelligence.
When deployed with CommandCenter Secure Gateway(CC-Secure Gateway), CommandCenter NOC further speeds time-to-repair by displaying its alert, diagnostic information and recommendations together with a link to KVM or serial console control directly over the device needing remediation.
Designed for businesses or business units of large enterprises with up to 2500 client PCs, 250 servers and 250 network devices, CC-NOC’s distributed architecture allows you to configure a system based on your architecture and topology now, and scale it cost effectively as your company grows.
A modular, distributed platform of three components
The CommandCenter NOC 2500N base unit supports systems management, vulnerability scanning, asset management and reporting for up to 250 network devices.
The CommandCenter NOC 2500M enhanced systems management unit adds enhanced Windows® system management for up to 250 Windows client PCs and 50 Windows servers. Up to five CC-NOC 2500M units can be added to a NOC 2500N, bringing the capability up to a total of 2,500 Windows client PCs and 250 Windows servers.
The CommandCenter NOC 2500S enhanced security unit adds enhanced security management and network traffic analysis to the capabilities of the CC-NOC 2500N. It provides network intrusion detection and traffic analysis.
Prices shown reflect Manufacturer's Suggested Retail Price (MSRP) for US market only. Actual purchase price may vary.
|
|
|
| |
| CC-NOC2500N-50-G1 |
Appliance & 50 Device License; 1YR HW Warranty |
$11,995.00 |
| CC-NOC2500N-100-G1 |
Appliance & 100 Device License; 1 YR HW Warranty |
$17,995.00 |
| CC-NOC2500N-250-G1 |
Appliance & 250 Device License; 1YR HW Warranty |
$23,995.00 |
| CC-NOC2500S-G1 |
Appliance - 20mbs + 1 YR HW Warranty; Must have CC- NOC2500N |
$4,995.00 |
| CC-NOC2500M-G1 |
Appliance & Lic. for 500 desktops/50 MS Svrs + 1-YR HW Warranty |
$4,995.00 |
| Add'l License Packages |
| CCL-2500N-50-100 |
License upgrade from 2500N-50 to 2500N-100 |
$5,995.00 |
| CCL-2500N-100-250 |
License upgrade from 2500N-100 to 2500N-250 |
$5,995.00 |
| CCL-2500N-50-250 |
License upgrade from 2500N-50 to 2500N-250 |
$11,995.00 |
'
| Features |
Benefits |
Out-of-Band access (via CommandCenter Secure Gateway) |
Provides one click access and sign on to distressed remote target servers, greatly improving mean time to repair. Users can move between management systems easily to gain the information needed to resolve incidents quickly. |
Network management |
Proactively monitors and maintains all devices and services on the network and alerts on changes in the environment. For example, SNMP trap support helps identify events for appropriate follow up. |
Windows system management |
Provides network administrators the ability to manage servers and workstations by providing a single repository for performance, inventory, and event data. |
Vulnerability scanning and assessment |
Scans the network for vulnerabilities and assists network administrators in resolving security concerns. |
Intrusion detection |
Allows administrators to monitor and analyze system events for unauthorized attempts to access system resources. |
Network traffic analysis |
Provides the ability to analyze traffic flow and create reports on the presence, absence, amount, direction, and frequency of network traffic. |
Asset inventory and tracking |
Provides the ability to create on-demand reports of hardware and software inventories. |
Third-party authentication (via CommandCenter Secure Gateway) |
Utilizes AD, LDAP, RADIUS and TACACS to simplify installation and database modifications. |
Reporting, asset management and IT compliance |
Provides reports on network performance, and conformance with IT security regulations. Includes Delta Inventory Reporting which notes hardware and software additions, removals and changes. Aids administrators by providing the ITIL feature for tracking “Configuration Item Changes.” |
Infrastructure reliability and performance trending and analysis |
Allows administrators to proactively monitor and maintain the network and spot problems, often before users notice a service degradation. Allows the IT infrastructure and support personnel to work at full strength. |
Network and system security |
Vulnerability scanning and intrusion detection discovers security problems from hackers, worms and other security threats before they cause harm. |
SNMP Trap management of Raritan devices |
Allows proactive monitoring of out-of-band network devices. |
Performance thresholds |
Alerts potential problems before an outage occurs. |
' 1U full width, rack mountable
14.1" x 16.8" x 1.7"; 358 x 426 x 43mm
15.5 lbs; 7.0 kg
110V/240V 50/60Hz 5A
5-40C; 41-104F
20% - 90% RH
Hardware
Intel Pentium 4-based industrial components
PC text mode – 720 x 400 (local access/configuration)
Remote Connection
Two 10/100/1000 Ethernet (RJ45), LAN 1: Network connection, LAN 2: Traffic and intrusion detection
Local Access Port: Serial: RS-232(m), Video: HD-15(F) VGA, Keyboard: Mini-DIN6(F) or USB A(F)
Protocols: TCP/IP, HTTP, HTTPS, UDP, SNTP, DHCP
Warranty
1 year hardware warranty. Extended warranty is also available.
Software support agreement required. Agreement provides: remote technical support, software updates and software releases as available.
'
CommandCenter NOC has a very powerful security vulnerability scanning engine and reporting mechanism. Scans can be performed on-demand or scheduled for future times. Four scan levels, numbered 1 through 4 are available. The higher the level of scanning, the more intense the scan: Level 1 port scanning, Level 2 profiling, Level 3 intrusion attempts, Level 4 malicious intrusion attempts.
It's easiest to envision this number as the number of successful polls divided by the number of attempted polls over the past 24 hours:
Successful polls over past 24 hours
------------------------------------------- = SLA percentage
Attempted polls over past 24 hours
The calculation is completed over a rolling 24 hour window. This parameter cannot be configured by the user.
The default polling interval is five minutes.
Determining appropriate polling intervals presents an interesting dilemma. More frequent intervals in larger networks can generate unacceptable network overhead. Longer intervals mean longer periods of potential downtime before an outage is identified. A five minute polling interval provides a healthy balance between these risks.
If your environment requires customization of these values, log in to your appliance as the administrator and visit the Admin->Configure Pollers page and change the interval.
Yes, CommandCenter NOC is able to manage multiple subnets with one hardware appliance. You can accomplish this by leveraging your WINS server if you have one, or by having a Windows proxy deployed in each subnet.
Our IDS has a signature profiler that allows the administrator to tailor the IDS to the environment, thereby vastly reducing false alarms. This can even be done at the signature level.
The list of services discovered and/or monitored include the following:
DHCP, DNS, EyeLID, FTP, HTTP, ICMP, IMAP, Informix, MSExchange, MySQL, MS SQL Server, OpenSSH, Oracle, POP3, PostgreSQL, Router, SMTP, SNMP, SNMPv2, Sybase
- ICMP - If a device responds to a "ping," which uses ICMP for its transport, the device will be flagged as supporting ICMP and will be tested for ICMP availability on the standard polling interval.
- MSExchange - If a device is determined to support MS Exchange, it means that we have discovered email-related services (IMAP, POP3, or SMTP) on one of its interfaces, and the banner received from that service identified the server as MS Exchange. The MS Exchange service indicates that the CommandCenter NOC was able to recognize that the server is MS Exchange, but due to potential configurations of the server that could disable banners, we do not guarantee that all MS Exchange servers will be identified as such.
- Router - If a device is identified to support the "Router" service, it must first support either SNMP or SNMPv2, and it must respond positively to a query of the.ipForwarding OID. This service is not polled on a regular polling interval, but instead, is used to help maintain appropriate contextual displays in the CommandCenter NOC's user interface.
- SNMP/SNMPv2 - Will discover if a device supports, specifically, SNMP version 2 (SNMPv2). SNMPv2 support implies that the devices supports the GET-BULK operator, which allows the CommandCenter NOC to pull performance data from the device using a far more efficient query, reducing network overhead, and freeing up the CommandCenter NOC to poll the next device in less time. Note that if a device supports both SNMP (which implies SNMP version 1) and SNMPv2, the CommandCenter NOC will query the device with SNMPv2 only, as it's more efficient and there is no need to retrieve redundant data.
No agents are used. CommandCenter NOC leverages WMI and SNMP, which are typically already loaded on the target machines. Some Microsoft enterprise-level service monitoring features require WMI support enabled.
It doesn't if both the CommandCenter NOC and the managed devices are behind the firewall or if communication across the firewall is via VPN. You potentially open minor vulnerability if either is outside the secure network and communication between them is without benefit of a VPN.
CommandCenter NOC's utilization of SNMP and WMI is far more secure than deploying proprietary software agents.
To further reduce risk, CommandCenter NOC only uses the read-only community strings for SNMP. Also, firewall rules on monitored Windows machines can be set to allow WMI access from the CommandCenter NOC only.
Yes, CommandCenter NOC is able to manage multiple subnets with one hardware appliance. You can accomplish this by leveraging your WINS server if you have one, or by having a Windows proxy deployed in each subnet.
Bandwidth utilization depends on how the CommandCenter NOC appliance is configured and the network configuration. The polling interval is user-configurable to best fit the customer operation. CommandCenter NOC has the ability to save bandwidth, since an IT director now can tell if employees are playing online games and listening to online music.
The firewalls need to be configured to provide access, since CommandCenter NOC accesses devices via SNMP, WMI and synthetic polled transactions
|
