Network Security: Detailed info on RE: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?)

Subject:	RE: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?)
Date:	Thu, 19 Aug 2004 12:15:43 -0700

Subject:

RE: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?)

Date:

Thu, 19 Aug 2004 12:15:43 -0700

Let's also not forget NAT/PAT.

Gary

-----Original Message-----
From: Ron Gula [mailto:rgula@tenablesecurity.com] 
Sent: Wednesday, August 18, 2004 10:51 AM
To: focus-ids@securityfocus.com
Subject: Re: Firewall vs. IPS - Differences now (ISS, 
Intrushield 2.1?)


At 02:46 AM 8/16/2004 +0000, you wrote:

Things are getting a little confusing. ISS claims that its Proventia 
boxes
are also firewallas. Intrushield 2.1 has firewall/layer 4 filtering 
capabilities now. If the Intrushield box layer 4 acls now

then what makes

it not be equal to a firewall? What does a firewall do that

an IPS doesn't

as long as the IPS can do layer-4 access lists? Any info is

apprecaited.

It depends on how strict you want to be with a definition of 
a firewall. On one hand, anything that can filter packets 
based on IP, TCP, .etc (like a router) can be thought of as a 
firewall. On the other hand, most enterprise firewalls 
perform services such as VPN termination, user 
authentication, usage reporting, routing, DNS/web proxy, .etc.

I think it's great that the IPS guys are adding in ACLs and 
wished they would have done this sort of thing from the start 
so we could have avoided the big IDS vs. IPS debate.

Ron Gula, CTO
Tenable Network Security
http://www.tenablesecurity.com


--------------------------------------------------------------
------------
FREE Network Security Webinar - How to implement IPSec 
security into VPN appliances 
 
New threats and vulnerabilities require new high-performance 
IPSec VPN solutions for network protection. Join the security 
experts from SafeNet on August 26 at 1:00 PM (Eastern), and 
learn how to successfully integrate IPSec security into VPN 
processors and appliances to provide powerful yet 
cost-effective VPN solutions for your customers. 
Register now:

http://www.securityfocus.com/sponsor/SafeNet_focus-ids_040817
--------------------------------------------------------------
------------



--------------------------------------------------------------------------
FREE Network Security Webinar - How to implement IPSec security into VPN 
appliances 
 
New threats and vulnerabilities require new high-performance IPSec VPN 
solutions for network protection.
Join the security experts from SafeNet on August 26 at 1:00 PM (Eastern), and 
learn how to successfully integrate IPSec security into VPN processors and 
appliances to provide powerful yet cost-effective VPN solutions for your 
customers. 
Register now:

http://www.securityfocus.com/sponsor/SafeNet_focus-ids_040817
--------------------------------------------------------------------------

<Prev in Thread]	Current Thread	[Next in Thread>
Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Jacob Winston Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Ron Gula RE: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Gary Halleen <= RE: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Rob Shein Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), M. Dodge Mumford Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Shaiful Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Srini Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Joel Snyder Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Thomas Ptacek Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), nick black Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Mike Frantzen Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), nick black Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Mike Frantzen

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Ron Gula
Next by Date:	RE: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Brito, Nelson (ISS Brazil)
Previous by Thread:	Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Ron Gula
Next by Thread:	RE: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Rob Shein
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Ron Gula

Next by Date:

RE: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Brito, Nelson (ISS Brazil)

Previous by Thread:

Re: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Ron Gula

Next by Thread:

RE: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?), Rob Shein

Indexes:

[Date] [Thread] [Top] [All Lists]