Active network discovery solutions enable IT organizations to gain real-time situational awareness of a large, complex geographically disperse networks. This insight allows the enterprise to validate IT policies, analyze the connectivity between assets and networks, uncovering risk patterns and policy weaknesses.

Lumeta IPsonar^® is the industry’s only solution to provide visibility into every IP asset, host, node, and connection on the network, performing an active probe and mapping everything that's on the network, (not just an IP range that is supplied for scanning) resulting in a comprehensive view of the entire routed infrastructure.

Network Discovery

Given the frequency of change in large networks, and the error-prone way in which changes are made, organizations struggle to assure that all network assets are under management. Unmanaged assets increase risk of intrusion and service outages. In support of Network Discovery, IPsonar:

• Applies multi-protocol discovery to penetrate deep into the network, identifying forwarding and filtering devices
• Traces the path of data through the network, indicating whether assets communicate properly
• Flags "stealth" assets that do not respond to queries, pinpointing resources that may not be under management
• Isolates the impact of firewall and router ACLs (access control lists), assuring they are operating in compliance to policy
• Provides a comprehensive route-based network topology from an application connectivity perspective

Host Discovery

Networks are collections of IP addresses that IT organizations are responsible for securing. Yet unknown IP addresses exist in every large network, often going undiscovered until they cause an outage, breach or audit issue.

• Conducts a census of all IP addresses using multi-protocol discovery, identifying the true perimeter of the network
• Flags previously unknown addresses - those not recognized by official network inventories - for remediation
• Enables organizations to harden defenses around their network perimeter and secure zones to enforce policies

Device Discovery

Unknown or unmanaged IP addresses exist in every large network, and these often go undiscovered until an outage, breach, or audit issue occurs. IPsonar reveals all network addresses, helping IT executives align areas of visibility with areas of responsibility.

IPsonar provides rich data on all networked devices, delivering a uniquely comprehensive data set on all devices at the network and transport levels, in addition to providing application-layer visibility. Detailed device information obtained by active network discovery gives users a real-time glimpse device type, vendor, model number, OS version, and more all of which can be easily integrated into to other IT and security lifecycle tools, such as network management systems. The solution:

• Identifies Internet services and proprietary IP applications active on hosts and devices, pinpointing resources for which tested ports are active
• Flags improperly secured wireless access points for remediation - improving security without requiring staff to scan airwaves or deploy antennae-based monitors
• Determines which operating systems network devices are running
• Extracts information from standard packets (ICMP echo requests and high-port UDP packets); no application-layer transactions
• Facilitates consolidation by noting devices that run network-based services, such as printers, network-based faxes and storage appliances
• Exports details to security tools, optimizing host-level vulnerability assessments and accelerating patch management

Leak Discovery

IPsonar’s patented network leak detection solution reveals unauthorized connections between the enterprise and another network, between segregated subnets, as well as unwanted connectivity between the network an the Internet, determining whether connectivity is outbound, inbound or both. IPsonar’s network leak detection capabilities are unparalleled in the industry, with the unique ability to find unknown connections into other organizations, such as legacy partner connections or divestiture connectivity. Leak Discovery provides intelligence for active network defense, enabling cybersecurity response before costly downtime or material weaknesses wreak havoc on the enterprise.

Leaks are devices with unauthorized inbound or outbound connectivity to the Internet or sub-networks (e.g., unsecured routers exposed to the Internet or open links to former business partners). The more complex a network, the more likely it is that leaks exist. IPsonar is crucial in the proactive fight against leaks, revealing all unauthorized connections and identifying whether access is outbound, inbound, or both. The solution:

• Pinpoints forwarding and filtering devices, enabling IT staff to assure these resources are in compliance with security policies
• Flags inbound and outbound connectivity to secure zones, such as those developed to protect customer data or carry sensitive communications
• Identifies resources a “hop” beyond the network, showing executives to which organizations they are connected
• Spots hard-to-find leaks such as unauthorized cable/DSL routers, multi-homed servers, and NAT/PAT proxies that covertly forward network traffic