I wouldn't use the CyberGuard to do your IDS functions. IMO the
CyberGuard is a good firewall, but I would stick with them for firewall
and proxy functions only. I would host my IDS functions on another
system. Are you using the SMTP SmartProxy for your mail traffic? There
is quite a bit you can do to reject mail through there based on sender,
subject, destination, attachment, etc.
Normally the ? feature will give you all the documentation you will
find. CyberGuard use the help pages for their training manuals in their
course. You can also find copies of the help pages in PDF format on the
CDs you get from CyberGuard.
HTH
Lew
-----Original Message-----
From: Marc S. O'Leary [mailto:marc@mycart.net]
Sent: Friday, August 20, 2004 7:02 PM
To: firewalls@securityfocus.com
Subject: IDS & NetProwler
I'm a recent victim of the "Pay Me $10,000 and I'll stop DOS'ing You"
email and subsequent DOS attack. We have killed it for now via the ACL
lists. My Firewall, an FS 250, has an option for IDS & Shutdown
affecting connections, but it wants to use NetProwler. Any info on
NetProwler or eqiv?
Marc
Have a spectacular day,
Marc O'Leary
913.681.2080 Ext.4305
913.681.2288 Fax
Marc@ <mailto:Marc@MyCart.net> MyCart.net
7200 W 132nd St Suite 380
Overland Park, KS 66213
NOTICE: This communication may contain confidential or other privileged
information and has been sent in an unencrypted format. If you are not
the intended recipient, or believe that you have received this
communication in error, please do not print, copy, retransmit,
disseminate, or otherwise use the information. Also, please indicate to
the sender that you have received this email in error, and delete the
copy you received. Any communication that does not relate to official
business is that of the sender and is neither given nor endorsed by the
sender.
