Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Full-disclosure] Suggestion for IDS

from [Vitor Ventura] Network Security [Permanent Link]
Subject: RE: [Full-disclosure] Suggestion for IDS
Date: Wed, 28 Sep 2005 17:11:52 +0100 
I'm not so sure that FWSM runs PIXOS, but with all that interfaces think about 
the rules managment nighmare.

        -----Mensagem original----- 
        De: Michael Holstein [mailto:michael.holstein@csuohio.edu] 
        Enviada: qua 28-09-2005 16:56 
        Para: full-disclosure@lists.grok.org.uk 
        Cc: 
        Assunto: Re: [Full-disclosure] Suggestion for IDS
        
        


        > If you NAT a lot, PIX can't handle the load.  It also isn't flexible
        > enough.
        
        Huh? .. the FWSM (which is PIX and you can have 4 of them in a chassis)
        can handle 100 intefaces, 5gpbs, 100k CPS, and 1M concurrent per blade.
        
        http://www.cisco.com/en/US/products/hw/modules/ps2706/ps4452/
        
        Show me an OpenBSD system that can handle 400 interfaces, 20gbps, and 4M
        connections (and can do HSRP, etc).
        
        (I'm not trying to start an open-source "holy war" on a newsgrop .. I
        use pf too, where I need the granularity -- just not on the whole 
network).
        
        ~Mike.
        _______________________________________________
        Full-Disclosure - We believe in it.
        Charter: http://lists.grok.org.uk/full-disclosure-charter.html
        Hosted and sponsored by Secunia - http://secunia.com/
        


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Full-disclosure] Suggestion for IDS, Paul S. Brown
Next by Date:  Re: [Full-disclosure] Suggestion for IDS, Kevin Pawloski
Previous by Thread:  RE: [Full-disclosure] Suggestion for IDS, Paul Schmehl
Next by Thread:  RE: [Full-disclosure] Suggestion for IDS, Brown, James
Indexes:  [Date] [Thread] [Top] [All Lists]