Network Security: Detailed info on Re: [Full-disclosure] Suggestion for IDS

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security FullDisclosure

[Top] [All Lists]

Re: [Full-disclosure] Suggestion for IDS

from [Michael Holstein] Network Security

[Permanent Link]

Subject:	Re: [Full-disclosure] Suggestion for IDS
Date:	Wed, 28 Sep 2005 11:56:45 -0400

If you NAT a lot, PIX can't handle the load. It also isn't flexible enough.

Huh? .. the FWSM (which is PIX and you can have 4 of them in a chassis) can handle 100 intefaces, 5gpbs, 100k CPS, and 1M concurrent per blade.

http://www.cisco.com/en/US/products/hw/modules/ps2706/ps4452/

Show me an OpenBSD system that can handle 400 interfaces, 20gbps, and 4M connections (and can do HSRP, etc).

(I'm not trying to start an open-source "holy war" on a newsgrop .. I use pf too, where I need the granularity -- just not on the whole network).

~Mike.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
RE: [Full-disclosure] Suggestion for IDS, (continued) RE: [Full-disclosure] Suggestion for IDS, Randall M Re: [Full-disclosure] Suggestion for IDS, Paul Schmehl Re: [Full-disclosure] Suggestion for IDS, Kevin Pawloski Re: [Full-disclosure] Suggestion for IDS, Lew Wolfgang [Full-disclosure] IDS features (was: Suggestion for IDS), Alejandro Barrera Re: [Full-disclosure] IDS features (was: Suggestion for IDS), Kevin Pawloski Re: [Full-disclosure] Suggestion for IDS, Paul Schmehl Re: [Full-disclosure] Suggestion for IDS, J. Oquendo Re: [Full-disclosure] Suggestion for IDS, Valdis . Kletnieks Re: [Full-disclosure] Suggestion for IDS, Paul Schmehl Re: [Full-disclosure] Suggestion for IDS, Michael Holstein <= Re: [Full-disclosure] Suggestion for IDS, Paul S. Brown Re: [Full-disclosure] Suggestion for IDS, Michael Holstein Re: [Full-disclosure] Suggestion for IDS, Paul S. Brown Re: [Full-disclosure] Suggestion for IDS, Valdis . Kletnieks Re: [Full-disclosure] Suggestion for IDS, Michael Holstein Re: [Full-disclosure] Suggestion for IDS, Valdis . Kletnieks Re: [Full-disclosure] Suggestion for IDS, Paul Schmehl Re: [Full-disclosure] Suggestion for IDS, Michael Holstein RE: [Full-disclosure] Suggestion for IDS, Jan Nielsen RE: [Full-disclosure] Suggestion for IDS, Paul Schmehl

Previous by Date:	Is the Bottom Line Impacted by Security Breaches?, Kenneth F. Belva
Next by Date:	RE: [Full-disclosure] Suggestion for IDS, Jan Nielsen
Previous by Thread:	Re: [Full-disclosure] Suggestion for IDS, Paul Schmehl
Next by Thread:	Re: [Full-disclosure] Suggestion for IDS, Paul S. Brown
Indexes:	[Date] [Thread] [Top] [All Lists]