HP TippingPoint S10

The HP TippingPoint S10 Intrusion Prevention System (IPS) achieves a new level of in-line, real-time protection, providing a proactive network security for today’s and tomorrow’s real-world network traffic and data centers. The IPS platform’s next-generation architecture adds significant capacity for deep packet traffic inspection, and its modular software design enables the addition of valuable network protection services to its proven intrusion protection solution. This new best-of-breed IPS Platform redefines intrusion prevention as a foundation for comprehensive network security. The HP S10 is optimized for sub 20 Mbps link speeds that are predominant in business DSL and Metro Ethernet services. The solution can be deployed in front or behind the remote location’s router/firewall immediately protecting the network and applications from inbound threats.

HP TippingPoint S10

IPS/IDS throughput - 20 Mbps
Network throughput - 20 Mbps
Security contexts - 250,000
Connections per second - 3,600
Concurrent sessions - 10,000,000

Ask A Question How To Buy

Data Sheets

HP Network Security Design Review Service

HP Security Management System Appliance Series

HP TippingPoint Modular Zero Power High Availability (ZPHA) ByPass

HP TippingPoint Next-Generation Firewall

HP TippingPoint NX Platform Next Generation Intrusion Prevention Systems

Resolve reliability and security issues of your network: HP Premium Plus Support Service for HP TippingPoint product

Stop today's advanced cyber threats with proactive network security: HP N Platform Next-Generation Intrusion Prevention System (NGIPS)

Solution Briefs

HP TippingPoint certified by ICSA Labs for Network IPS

HP TippingPoint Virtual Controller, Virtual Management Center, and VMware vShield

Mapping security for your virtual environment

Master both worlds

Overview
Features
Services & Suport
Model Specs
Data Sheets

The HP S Intrusion Prevention System (IPS) Series is optimized for performance and reliability at 20, 100, and 300 Mbps with very flexible deployment options. For perimeter protection, the solutions can be deployed in front of or behind a router/firewall to immediately protect the network and applications from inbound threats. Deployment between network zones provides isolation and protects sensitive zones from internal attacks. HP IPS solutions are designed to preserve availability, performance, and security for enterprises and service providers alike. They give service providers more flexibility for general or dedicated protection for their customers' assets. The series also has integrated Zero Power High Availability (ZPHA) so that a simple power failure does not cause a network outage. This series complements other HP IPS solutions, which provide network protection in high-bandwidth locations such as the core network and data center.

Industry-proven proactive network security
Up-to-date and broad IPS protection
Industry-leading security research team—DVLabs
Minimized overall security costs and complexity
Security compliance best practices

Technical features

Proven in-line threat protection — Since 2001, HP TippingPoint has been laser-focused on creating IPS solutions that provide proactive, in-line network protection while ensuring high network performance and availability. No network security solution remains in-line long if it compromises network performance or uptime. According to a 2008 study by Infonetics Research, more enterprise IPS users use our IPS solutions in-line than any other.
Proven reliability and redundancy — The S10, S110, and S330 IPSs are designed to deliver unparalleled high availability. This ensures that network traffic always flows at wire speed even in the event of network or internal device error, or complete power loss. There are two complementary high availability modes of operation—Intrinsic High Availability and Stateful Network Redundancy. And with integrated Zero Power High Availability (ZPHA), a simple power failure does not cause a network outage.
Best-in-class remote office security — The S10 IPS is optimized for sub 20 Mbps link speeds that are predominant in business DSL and metro Ethernet services. The solution can be deployed in front of or behind the remote location's router/firewall, immediately protecting the network and applications from inbound threats. The S10 IPS is designed to preserve availability and to increase performance and security on remote office networks.
Industry-leading security coverage — The S10, S110, and S330 IPSs receive automated security updates from the Digital Vaccine Service, ensuring evergreen (always up-to-date) protection against emerging threats. Digital Vaccines are created not only to address specific exploits, but also potential attack permutations, protecting customers from zero-day threats. Digital Vaccines are delivered to customers at least two times a week and can be deployed automatically with no local user interaction.
Comprehensive traffic flow inspection — The IPS provides comprehensive flow inspection through Layer 7 to cleanse Internet and intranet traffic and eradicate attacks before damage occurs to protected systems. In fact, the HP TippingPoint IPS solutions are known for their pinpoint accuracy in blocking attacks, meaning no legitimate traffic is blocked.
Broad network asset protection — HP TippingPoint IPS solutions protect a broad range of network infrastructure including routers, switches, DNS and email servers, Web and enterprise application servers, and much more. HP TippingPoint solutions provide the best vulnerability coverage in the IPS industry, including protection of Cisco, Microsoft®, Sun O/S, EMC, SAP, CA, Mozilla, Novell, Oracle, Apple O/S, Citrix O/S, Adobe®, IBM, and many other enterprise applications.
Reduced overall costs and complexity — HP TippingPoint IPSs block attacks and allow IT staff to spend time on strategic projects instead of reacting to security breaches on hosts and workstations. The S10, S110, and S330 IPSs provide network segmentation to stop the spread of malicious traffic from infected users, while notifying IT administrators where attacks are originating.
Traffic management preserves network bandwidth — The HP TippingPoint IPS also provides traffic management to stop bandwidth hogging applications like peer-to-peer, instant messaging, and streaming media. The IPS provides the ability to block or rate-limit these applications, preserving network bandwidth and network device capacity.
Rapid network and remote office installation — The HP TippingPoint IPS is easily installed in both large corporate and remote office networks. In remote office networks the IPS is easily installed by local personnel in minutes and immediately begins filtering out malicious and unwanted traffic. The IPS is deployed seamlessly with no IP or MAC address configurations, and all systems ship with "Recommended Settings", meaning no "out-of-the-box" configurations are required locally.
Easy to manage — The HP TippingPoint IPS solutions are easily managed with the security management system (SMS) that discovers, monitors, configures, diagnoses, and reports on multiple IPS systems. In addition, every IPS has a command-line interface (CLI) and an embedded local security manager (LSM) that provides local administration, configuration, and reporting in an easy-to-use Web interface.
Best practices for security compliance — The HP TippingPoint IPS can be a critical component in an IT compliance program. Today's organizations deal with increasingly stringent security policies in the face of an ever-changing threat landscape and increasing regulatory requirements. With these pressures, the IPS provides automated enforcement of network security policies, and reporting from the IPS and SMS shows internal and external auditors how the network is being protected.

HP Care Packs for HP Networking

There are currently no care packs

HP Networking Services

Services that add value to your business

The warranties on HP Networking products provide a robust foundation for ongoing network support, but many customers have advanced support needs. Today's enterprise businesses, regardless of their size, are under increasing pressure to reduce the cost and complexity of supporting their network infrastructures. Demand for new services from businesses and their end users is constantly increasing. HP offers an affordable, comprehensive portfolio of networking services for organizations of all sizes. HP has a unique services advantage you can benefit from, and HP is the only vendor in the IT industry that can provide integrated and consistent support for your entire technology infrastructure worldwide, including networking, servers and storage, and imaging and printing, as well as desktop and mobile computing, to help you grow your business with expert support that is affordable, personal, and scaled to your needs. HP Networking's implementation and design centers simplify your network planning, while HP Technology and Enterprise Services deliver choice and flexibility.

HP provides a full range of custom services to meet the end-to-end networking needs of our customers. HP Network Lifecycle Services form the core foundation of network consulting, assessments, planning, design, integration, deployment, and management. They are available as standalone services or can be crafted to deliver solutions across the services portfolio, spanning network performance, network security and risk management, global deployment, data center networking, wireless LAN/mobility, and Unified Communications and Collaboration.

	HP S10 20Mbps IPS (JC184A)	HP S110 100Mbps IPS (JC186A)	HP S330 300Mbps IPS (JC187A)
Ports
	4 RJ-45 autosensing 10/100/1000 ports (IEEE 802.3 Type 10BASE-T, IEEE 802.3u Type 100BASE-TX, IEEE 802.3ab Type 1000BASE-T) Duplex: 10BASE-T/100BASE-TX: half or full; 1000BASE-T: full only	8 RJ-45 autosensing 10/100/1000 ports (IEEE 802.3 Type 10BASE-T, IEEE 802.3u Type 100BASE-TX, IEEE 802.3ab Type 1000BASE-T) Duplex: 10BASE-T/100BASE-TX: half or full; 1000BASE-T: full only	8 RJ-45 autosensing 10/100/1000 ports (IEEE 802.3 Type 10BASE-T, IEEE 802.3u Type 100BASE-TX, IEEE 802.3ab Type 1000BASE-T) Duplex: 10BASE-T/100BASE-TX: half or full; 1000BASE-T: full only
Physical characteristics
Dimensions	7.38(d) x 10.63(w) x 2.02(h) in. (18.75 x 27 x 5.13 cm) (2U height)	18.25(d) x 16.75(w) x 1.74(h) in. (46.36 x 42.55 x 4.42 cm) (1U height)	18.25(d) x 16.75(w) x 1.74(h) in. (46.36 x 42.55 x 4.42 cm) (1U height)
Weight	5.49 lb. (2.49 kg)	14.99 lb. (6.8 kg)	14.99 lb. (6.8 kg)
Mounting
		19 or 23 inch wide rack—ears provided	19 or 23 inch wide rack—ears provided
Performance
Latency	< 600 µs	< 600 µs	< 600 µs
IPS/IDS throughput	20Mbps	100Mbps	300Mbps
Network throughput	20Mbps	100Mbps	300Mbps
Security contexts	250000	250000	250000
Connections per second	3600	9700	18500
Concurrent sessions	1000000	1000000	1000000
Electrical characteristics
Voltage	100-240 VAC	100-240 VAC	100-240 VAC
Current	1.8 A	3/2 A	6/3 A
Frequency	50/60 Hz	50/60 Hz	50/60 Hz
Safety
	UL 60950-1EN 60825-1 Safety of Laser Products-Part 1EN 60825-2 Safety of Laser Products-Part 2IEC 60950-1EN 60950-1CSA 22.2 60950-1ROHS Compliance	UL 60950-1EN 60825-1 Safety of Laser Products-Part 1EN 60825-2 Safety of Laser Products-Part 2IEC 60950-1EN 60950-1CSA 22.2 60950-1ROHS Compliance	UL 60950-1EN 60825-1 Safety of Laser Products-Part 1EN 60825-2 Safety of Laser Products-Part 2IEC 60950-1EN 60950-1CSA 22.2 60950-1ROHS Compliance
Notes
	Performance footnotes: IPS/IDS Throughput represents the inspection throughput levels measured with recommended security profiles. Network Throughput represents the maximum throughput levels that can be achieved with the use of traffic forwarding. Typical Latency is measured on packet sizes up to 1518 bytes. Concurrent Network Sessions is the maximum number of concurrent network sessions that can be supported by the IPS. Security Contexts is the maximum number of sessions with security state that can be supported by the IPS.	Performance footnotes: IPS/IDS Throughput represents the inspection throughput levels measured with recommended security profiles. Network Throughput represents the maximum throughput levels that can be achieved with the use of traffic forwarding. Typical Latency is measured on packet sizes up to 1518 bytes. Concurrent Network Sessions is the maximum number of concurrent network sessions that can be supported by the IPS. Security Contexts is the maximum number of sessions with security state that can be supported by the IPS.	Performance footnotes: IPS/IDS Throughput represents the inspection throughput levels measured with recommended security profiles. Network Throughput represents the maximum throughput levels that can be achieved with the use of traffic forwarding. Typical Latency is measured on packet sizes up to 1518 bytes. Concurrent Network Sessions is the maximum number of concurrent network sessions that can be supported by the IPS. Security Contexts is the maximum number of sessions with security state that can be supported by the IPS.