1:a) network monitoring not as far as i know. u need a monitoring tool/ solarwinds ehealth and the like
1: b) csa afaik can help identify sec vulns and virii(uses). it is part of an ids/ips suite
2: csa is indeed compatible with hp servers.

remember though that this is part of cisco network access control and for use in conjunction with your av like mcafee who helped develop the nac with cisco no matter what that cisco rep told you about it being able to stop blaster without an av etc etc. i bring again to your attention, your ict strategy? what is it you wish to achieve, where is your cobit, itil, tort, sox compliance etc?!