nanog mailing list archives
Re: Securing Greenfield Service Provider Clients
From: Randy Bush <randy () psg com>
Date: Sat, 10 Oct 2020 10:23:01 -0700
Is it fair to say that an NGFW *must* decrypt SSL traffic in order to fully categorize for IPS/IDS prevention?
well, not really. aside from damage, it will not 'protect' you against more modern transports, such as quic, which were designed to keep the net open. randy
Current thread:
- Securing Greenfield Service Provider Clients Christopher J. Wolff (Oct 09)
- Re: Securing Greenfield Service Provider Clients Matt Harris (Oct 09)
- Re: Securing Greenfield Service Provider Clients Jared Geiger (Oct 09)
- RE: Securing Greenfield Service Provider Clients Kevin Burke (Oct 09)
- Re: Securing Greenfield Service Provider Clients Matthias Luft via NANOG (Oct 09)
- Re: Securing Greenfield Service Provider Clients Baldur Norddahl (Oct 09)
- Re: Securing Greenfield Service Provider Clients Curtis, Bruce via NANOG (Oct 09)
- Re: Securing Greenfield Service Provider Clients Christopher J. Wolff (Oct 10)
- Re: Securing Greenfield Service Provider Clients Ca By (Oct 10)
- Re: Securing Greenfield Service Provider Clients Curtis, Bruce via NANOG (Oct 11)
- Re: Securing Greenfield Service Provider Clients Randy Bush (Oct 10)
- Re: Securing Greenfield Service Provider Clients Curtis, Bruce via NANOG (Oct 11)
- Re: Securing Greenfield Service Provider Clients Christopher J. Wolff (Oct 10)
- Re: Securing Greenfield Service Provider Clients Billy Crook (Oct 09)
- Re: Securing Greenfield Service Provider Clients Garrett Skjelstad (Oct 11)