Preface
In recent years, the popularization of wireless LANs and mobile PCs has made computing more convenient than ever. The portability and ease of use of today's devices means that not only employees of a company, but also people from outside a company can bring their own PCs into an office and easily access that company's intranet. The ease of bringing an unauthorized PC into a company and connecting to the intranet raises many problems. For example, employees might deliberately take corporate information out of the office, or an information leak might go unnoticed by the company. Measures to prevent such incidents are now being sought.
If a company can constantly monitor its intranet, even one comprising a vast number of PCs spread throughout an office, and promptly detect when an unauthorized PC has been connected, the intranet can be protected and information leaks prevented.
JP1/Network Monitor allows you to do just that. It provides 24-hour monitoring of your company's intranet, automatically cutting off access to any unauthorized connections it detects, thereby protecting your company's network and the important data contained within.
Features of JP1/Network Monitor
No client software is needed
Installation and maintenance are easy because there is no need to install dedicated software to client PCs.
Unauthorized PCs can be automatically isolated from the LAN
By constantly monitoring the intranet, JP1/Network Monitor immediately detects the connection of any unauthorized PC and automatically excludes it from the intranet, preventing unauthorized access. Since JP1/Network Monitor pinpoints and excludes only unauthorized PCs, it does not affect legitimate communication on the network.
Furthermore, JP1/Network Monitor allows you to manually grant or deny connection permissions, even for authorized PCs on the network. With this function, you can perform security measures such as temporarily isolating a PC with insufficient virus protection from the rest of the network and re-granting permission after the protection is made sufficient.
You can install JP1/Network Monitor without changing the existing network environment
JP1/Network Monitor supports both fixed IP addresses and DHCP automatic IP addresses, allowing you to use its monitoring and exclusion functions regardless of the address system your network uses.
JP1/Network Monitor even supports wireless LAN, HUB, and switch environments. Furthermore, in a system environment that has been set up using VLAN tagging (IEEE 802.1Q), a single JP1/Network Monitor can be used to monitor multiple sub-networks. Since JP1/Network Monitor does not need any special equipment for monitoring and can be used on your pre-existing network, we recommend JP1/Network Monitor to customers who want an easy-to-install and easy-to-use security system for their company's intranet.
You can build a quarantine system by using JP1/Network Monitor in conjunction with other JP1 products
Using JP1/Network Monitor in conjunction with JP1/Client Security Control and JP1/Software Distribution enables you to automatic isolate from the intranet client PCs that do not have updated virus protection, lack an important security patch, or in any way violate your company's security policy. Although a PC that has been isolated from a network cannot communicate with other servers on that network, it is still granted the ability to communicate with the remedy server for inspection and treatment purposes. It is therefore possible, by using JP1/Network Monitor in conjunction with other JP1 products, to expand your security system into a complete quarantine system that covers all tasks from isolation to treatment.
Monitoring for connections of unauthorized PCs and forcibly excluding them
Managing PCs and devices that are connected to the intranet
JP1/Network Monitor is installed onto an administrator's PC within an intranet where broadcasts (the process of sending data simultaneously to all terminals on a network. Data is sent to a special address that denotes the entire network) are delivered. At JP1/Network Monitor's management screen, you can register PCs that are permitted to connect to the network.
JP1/Network Monitor constantly monitors a specified portion of the intranet. When JP1/Network Monitor detects an unauthorized PC connected to the network, JP1/Network Monitor automatically excludes that PC so that it can no longer access the intranet.
JP1/Network Monitor can also be used to manually exclude a specified PC, such as a PC infected by a computer virus, from the rest of the intranet. This allows you to prevent computer viruses from spreading within the intranet.
Using the Web browser to manage PCs and devices connected to the intranet
Performing integrated monitoring of a large-scale system
When monitoring a large-scale system, such as one containing numerous network hubs, JP1/Network Monitor can be used to manage the networks within the hubs individually, but it is useful to install JP1/Network Monitor - Manager. JP1/Network Monitor - Manager provides integrated management of the entire system of networks, and by using JP1/Network Monitor - Manager's special-purpose GUI, you can determine at a glance the connection statuses of PCs and devices at all hubs, you can register and change the connection permissions of PCs, you can view summaries of the connection statuses of unauthorized PCs, and you can search for devices connected to the networks.
JP1/Network Monitor - Manager main window
Installing JP1/Network Monitor - Manager enables you to:
- Use the special-purpose GUI to manage information about all PCs and devices in the system.
- Perform operations on individual networks within each hub, such as registering permitted devices, configuring environments, and searching for connected devices.
- Tabulate the number of unauthorized connections to each monitored hub by day, week, and month. This allows you to quickly determine how many unauthorized connections have been attempted, and on which hubs they occurred.
- Centrally manage the warning events that occur when an unauthorized PC is connected to the network. These warning events cause JP1/Network Monitor - Manager to display pop-up messages.
Centrally monitoring multiple hubs
Normally, when you want automatic, forcible exclusion of unauthorized PCs, you must install JP1/Network Monitor on each network that is to receive broadcasts, such as LANs or divisions. However, installing this way on a broad scale, such when multiple hubs exist, can lead to an increase in the number of servers and an increase in the labor required for installation. In such a case, you can begin with just JP1/Network Monitor - Manager installed, in order to monitor the connection statuses of PCs at multiple hubs. You can then install JP1/Network Monitor on each network that requires automatic, forced exclusion of unauthorized PCs.
Determining how many PCs have connected
Installing JP1/Network Monitor - Manager onto a single server in the system enables you to monitor PCs connected to multiple networks. When JP1/Network Monitor - Manager detects an unauthorized PC connected to the network, JP1/Network Monitor - Manager shows that PC in red on the GUI. Although JP1/Network Monitor - Manager cannot forcibly and automatically exclude unauthorized PCs, a single installation of JP1/Network Monitor - Manager on a server can centrally monitor multiple networks. This allows you to easily set up a system to monitor for PC connections; a single JP1/Network Monitor - Manager can monitor roughly 100 networks and 3000 clients.
JP1/Network Monitor - Manager can monitor multiple networks
Excluding unauthorized PCs from a network when you want an especially high security level
In a network where you want automatic, forcible exclusion of unauthorized PCs, introduce one server on which you have installed JP1/Network Monitor. When JP1/Network Monitor detects an unauthorized PC connection, it forcibly and automatically excludes that PC from the network.
In a network with an installed JP1/Network Monitor,
unauthorized PCs are forcibly and automatically excluded from the network.
You can therefore begin with just JP1/Network Monitor - Manager installed, to monitor for authorized PCs throughout your system. You can then install JP1/Network Monitor on each network that requires automatic, forced exclusion of unauthorized PCs. By only installing what is necessary at each stage, you tailor the installation to suit your purposes and minimize installation costs.
Conclusion
JP1/Network Monitor protects corporate intranets by automatically detecting and isolating unauthorized PCs. Major advantages of JP1/Network Monitor are that it does not require special client software, and that it can integrate with your existing networks without the networks needing modifications. We recommend JP1/Network Monitor to customers who want an easy-to-implement network security system that will protect their important company data and prevent information leaks.