| |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW-1] Best IDS??
- To: [email protected]
- Subject: Re: [FW-1] Best IDS??
- From: Alexey Vitashkevich <[email protected]>
- Date: Thu, 29 Nov 2001 15:22:14 -0500
- Importance: Normal
- In-reply-to: <074C277EF3B0D511BEA20008C74CE8B10147A5@BDCNGIUS>
- Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
- Sender: Mailing list for discussion of Firewall-1 <[email protected]>
Try intrusion.com appliances ...they have open source exploits DB and
runs on linux ...not that expensive .
-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:[email protected]] On Behalf Of
Steven Schuster
Sent: Thursday, November 29, 2001 2:32 PM
To: [email protected]
Subject: Re: [FW-1] Best IDS??
Use both of these products in conjunction. As they both have strengths
and weaknesses, use the strengths of one to cover the weaknesses of the
other. Having two IDS systems, one inside your network and one outside,
is like using two different vendors for anti-virus...use one product at
the gateway and another on the desktop. In this manner, if one misses
something, the other should catch it.
my $0.02
Steve Schuster
-----Original Message-----
From: Tim Anderson [mailto:[email protected]]
Sent: Thursday, November 29, 2001 12:16 PM
To: [email protected]
Subject: [FW-1] Best IDS??
We have budget to purchase an IDS and would like to get suggestions from
you
fine folks. We are looking at SNORT since it is free (except for the
equipment costs) and ISS Real Secure. We are open to other suggestions
as
well. Also where do you guys have your sensors? We were thinking that
having one on the DMZ is probably enough but we want some input from
others
before we decide. Thanks!
Tim Anderson
===============================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
===============================================
===============================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
===============================================
**************************************************************************************************
The contents of this email and any attachments are confidential.
It is intended for the named recipient(s) only.
If you have received this email in error please notify the system manager or the
sender immediately and do not disclose the contents to any one or make copies.
** eSafe scanned this email for viruses, vandals and malicious content **
**************************************************************************************************
===============================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
===============================================
|
|
