Firewall Wizards mailing list archives

RE: IPS (was: Sources for Extranet Designs?)

From: Frederick M Avolio <fred () avolio com>
Date: Thu, 26 Feb 2004 17:27:58 -0500

At 03:06 PM 2/26/2004 +0100, Ben Nagy wrote:

Intrusion Prevention can be done at a number of places

1. The Firewall
2. The Network (inline IPS lives here)
3. The Host (cross platform issues here!)
- 3a. The Host Network level (TDI or driver stuff, where the current PFWs
live)
- 3b. The Host Kernel / Memory Mangement level (systrace, pax, and their
windows friends)


4. The physical room/building.
5. The policies and procedures.

Sorry. I agree with Ben, but wanted to point out that the stuff that isn'tsexy must not be forgotten. (I mean 4 and 5 here, not *me*. :-))


Fred



_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

RE: Sources for Extranet Designs?, (continued)
- - RE: Sources for Extranet Designs? Jim Seymour (Feb 23)
- RE: Sources for Extranet Designs? Mitchell Rowton (Feb 23)
- RE: Sources for Extranet Designs? Steven A. Fletcher (Feb 23)
- RE: Sources for Extranet Designs? Wes Noonan (Feb 23)
- RE: Sources for Extranet Designs? Don Parker (Feb 23)
  - RE: Sources for Extranet Designs? Chris Blask (Feb 24)
  - RE: IPS (was: Sources for Extranet Designs?) Ben Nagy (Feb 26)
    - RE: IPS (was: Sources for Extranet Designs?) Christian Kreibich (Feb 26)
    - RE: IPS (was: Sources for Extranet Designs?) Chris Blask (Feb 26)
    - Re: IPS (was: Sources for Extranet Designs?) Bennett Todd (Feb 26)
    - RE: IPS (was: Sources for Extranet Designs?) Frederick M Avolio (Feb 26)
- RE: Sources for Extranet Designs? Don Parker (Feb 24)