ISS Proventia Network

Implementation of Proventia is not trivial. However, it is a powerful system when properly deployed. The suite, and thus the Network Scanner, uses the ISS Site Protector as a console, centralised management and correlation dashboard. We found that the use of a single product, such as Network Enterprise Scanner, out of the context of other products in the Proventia suite, does not allow the product to reach its potential.

Network Enterprise Scanner is highly customisable with significant policy granularity and both active and passive scanning. When used with the Proventia IPS, the device enables blocking based on known vulnerabilities. The scanner performs automatic discovery of devices on the network and recognises virtually any device likely to be there.

We had difficulty getting the product to communicate properly with Site Protector and we do not recommend this for trivial applications. Once the device is in place and configured, operation is much easier, but getting it working initially requires a serious understanding of it, Site Protector, SQLServer and your network in general.

Documentation consists of a quick-start card that we found was not adequate to the job of installing the product. Other documentation is available online but, although it is extremely comprehensive, we found it somewhat cumbersome to use.

There is a customer support portal, and toll-free phone support also is available. Network Enterprise Scanner’s value is hard to calculate. At US$7,250 it certainly is not expensive. However, the requirement for MS SQLServer and Site Protector, with accompanying hardware, push the price up, as does support and, most especially, management. Again, in the context of the overall Proventia suite this is a good buy. Alone, it is not.