Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Snort-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Snort-users] juniper IPS

from [Chris Lyon] Network Security [Permanent Link]
Subject: Re: [Snort-users] juniper IPS
Date: Fri, 19 Aug 2005 11:22:37 -0700 
On 8/19/05, Matt Kettler <mkettler@evi-inc.com> wrote:

Min Qiu wrote:

Hi,

Anyone here have experience with Juniper IPS?  Is the product
use snort underneath?


I highly doubt that Juniper would be so foolish.

(They're going to want to make closed-source customizations to their product,
including detection engine customization, and doing so using snort as a 
codebase
would be legally troublesome due to licensing.)

I suspect that the juniper is either home-grown, or purchased from someone 
else.
In this case, it's almost certainly based on the Netscreen IPS, since juniper
bought netscreen.


Acutally, 
Netscreen bought OneSecure before Juniper bought Netscreen. OneSecure
was the original maker of the IPS solution and is a decent solution to
date. It is either IPS inline or IDS out.  As for any opensource code,
google @onesecure.com. The trail is somewhat interesting with posts to
the snort users list from people at onesecure. Interesting!



The netscreen IPS uses a mixture of software and a custom hardware ASIC to do
it's operations, so it's little like snort.


The IPS systems are not ASIC based like their firewalls. If you take a
closer look at the systems, they look allot like Dell PowerEdges!

One of netscreen's goals was to move an IPS lite into the firewalls,
which they did. Hence the move towards central processing even in
their appliance firewalls.





-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO
September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
_______________________________________________
Snort-users mailing list
Snort-users@lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users




-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO
September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
_______________________________________________
Snort-users mailing list
Snort-users@lists.sourceforge.net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Snort-users] juniper IPS, Matt Kettler
Next by Date:  Re: [Snort-users] help, Kevin Reiter
Previous by Thread:  Re: [Snort-users] juniper IPS, Matt Kettler
Next by Thread:  RE: [Snort-users] juniper IPS, Bob Konigsberg
Indexes:  [Date] [Thread] [Top] [All Lists]