Re: PIX Questions

Thank you ALL for great responses!

Bohling James GS-13 JBC wrote:

> Answer to part 2 of question 1 
>
> The PIX IDS functionality is very limited there are much more than 55
> known attack vectors out there.  The PIX is great for front line IDS
> though because it actually inspects for 55 critical signatures; however
> this is insufficient for a full fledge enterprise network.  As such, an
> enterprise IDS should also be incorporated into your perimeter security
> strategy.
>
> Some IDS such as Snort, RealSecure, Sourcefire, Enterasys, and Symantec
> offer reputable products.
>
> On the other hand Cisco IDS is also reputable and probably integrates
> well with your existing infrastructure, which is probably Cisco. Cisco
> routers, firewalls, and even switches can now be integrated with the
> Cisco IDS product.  However again, then you are approaching being locked
> into the Cisco/Windows paradigm that plagues us today.  
>
> Sorry I couldn't find the list of 55 signatures either.
>
> - James
>
>
> > -----Original Message-----
> > From: Aaron [mailto:agflem@yahoo.ca] 
> > Sent: Thursday, August 19, 2004 9:31 AM
> > Cc: firewalls@securityfocus.com
> > Subject: PIX Questions
> >
> > 1. The PIX 506E scans for 55 known attacks, what are they? 
> > Also, does it scan for other 'threats'? Should there be 
> > another device in use for IDS aside from the PIX?
> >
> > 2. I would like to use the PDM, however I can not download it 
> > from Cisco. The PIX IOS is 6.3, but I'm not sure what else I 
> > need to take advantage of the web based interface.
> >
> > Cheers