Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-IDS
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: location of an IPS

from [Bourque Daniel] Network Security [Permanent Link]
Subject: RE: location of an IPS
Date: Fri, 21 Oct 2005 01:24:37 -0400 

What good can an IPS make in a DOS attack in front of your firewall???  If
the link is saturated, it won't help even if it protect the fw...

An IPS have to be place in the ISP premise and they will refuse to allow you
to do that, or rent it themself.

-----Original Message-----
From: kgeorgiades@toplayer.com [mailto:kgeorgiades@toplayer.com] 
Sent: Thursday, October 20, 2005 10:32 PM
To: dfox168@hotmail.com; focus-ids@securityfocus.com
Subject: RE: location of an IPS

Doug,

If your IPS can provide DDoS protection in addition to the Malicious Content
protection you should place the IPS in front of the Checkpoint FW in order
to also protect the FW from the DDoS attacks.

If your IPS can only provide Malicious Content protection, you should place
it behind the FW.


Note: I work for a company that is also selling IPS.

Kyriacos (Ken) Georgiades
Senior Director, Product Line Management Top Layer Networks, Inc
Tel: 508 870 1300 x 231
Cell: 508 783 5988
Fax: 508 870 9797
Email: kgeorgiades@toplayer.com
www.toplayer.com



-----Original Message-----
From: Doug Fox [mailto:dfox168@hotmail.com]
Sent: Wednesday, October 19, 2005 4:58 PM
To: focus-ids@securityfocus.com
Subject: location of an IPS


I'm sorry for this dumb question, which may have been answered many times.

Where should one place an TippingPoint Unity 50 IPS device?  Behind or in
front of a firewall?

I have a/the TippingPoint behind a Check Point firewall. Even though we
externally and internally port-scanned the firewall and the IPS many times,
the activity log did not contain any record of the "attacks".

What am I missing here?  Any pointers are appreciated.

Thanks,

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from CORE
IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from CORE
IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Current IDS problems, crazy frog crazy frog
Next by Date:  Re: location of an IPS, Kurt Seifried
Previous by Thread:  RE: location of an IPS, kgeorgiades
Next by Thread:  Re: Re: location of an IPS, asalo
Indexes:  [Date] [Thread] [Top] [All Lists]