nanog mailing list archives
Re: Intrusion Detection recommendations
From: Mel Beckman <mel () beckman org>
Date: Fri, 13 Feb 2015 20:02:12 +0000
JO, IDS to meet PCI or HIPAA requirements is "regulatory grade". It meets specific notification and logging requirements. SNORT-based systems fall into this category. -mel beckman
On Feb 13, 2015, at 10:00 AM, "J. Oquendo" <joquendo () e-fensive net> wrote:On Fri, 13 Feb 2015, Mel Beckman wrote: Unless you need regulatory-grade IDS, your best bet is a Unified Threat Management (UTM) appliance, essentially any modern enterprise grade firewall such as a Cisco ASA, Fortigate, SonicWall, etc. These all have built-in IDS/IPS options for a fee. -melWith all due respect, is regulatory-grade IDS the same as say "military-grade" encryption? -- =+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+ J. Oquendo SGFA, SGFE, C|EH, CNDA, CHFI, OSCP, CPT, RWSP, GREM "Where ignorance is our master, there is no possibility of real peace" - Dalai Lama 0B23 595C F07C 6092 8AEB 074B FC83 7AF5 9D8A 4463 https://pgp.mit.edu/pks/lookup?op=get&search=0xFC837AF59D8A4463
Current thread:
- Intrusion Detection recommendations Andy Ringsmuth (Feb 13)
- Re: Intrusion Detection recommendations Mel Beckman (Feb 13)
- Re: Intrusion Detection recommendations J. Oquendo (Feb 13)
- Re: Intrusion Detection recommendations Mel Beckman (Feb 13)
- Re: Intrusion Detection recommendations J. Oquendo (Feb 13)
- Re: Intrusion Detection recommendations Mel Beckman (Feb 13)
- Re: Intrusion Detection recommendations Matthew Petach (Feb 14)
- Re: Intrusion Detection recommendations J. Oquendo (Feb 13)
- Re: Intrusion Detection recommendations Mel Beckman (Feb 13)
- Re: Intrusion Detection recommendations Richo Healey (Feb 13)
- Re: Intrusion Detection recommendations Rich Kulawiec (Feb 13)
- Re: Intrusion Detection recommendations Rafael Possamai (Feb 13)
- Re: Intrusion Detection recommendations Valdis . Kletnieks (Feb 13)
- Re: Intrusion Detection recommendations J. Oquendo (Feb 13)