| Application | Description |
|---|---|
| flow_monitor | send a copy of new coming flow from host to a specific switch port for analysis |
| blacklist | a simple backlist to drop traffic from a specific host with IP address |
| http_blocker | block http traffic from a specific host with IP address |
| host_quarantine | Statically quarantine all traffic from a malicious host in the network |
| arp_guard | Protect the network from ARP spoofing/poisoning attack |
| reflector_net | redirect the malicious host that launching scanning attack to a honey-pot |
| buffer_overflow | find buffer overflow attack by signature and block it. |
| exefile_guard | block HTTP requests including jpg files |
| tcp_flood_blocker | block TCP floodling attack |