Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: IPS

From: Wes Young <wcyoung () BUFFALO EDU>
Date: Thu, 20 Jul 2006 10:54:22 -0400
On Thu, 2006-07-20 at 14:50 +0000, John Kaftan wrote:

Thanks to all who have responded to my IPS question.  Looks like Tipping
Point is the IPS of choice.  It looks like the Tipping Point is an in-line
device.  This works great for an internet connection but I am not sure how I
would use it to secure inter-VLAN traffic.  I am also concerned about
traffic between my VLANs.  Since I have a MSFC on a 6509 to handle my
routing.  I do not see where the Tipping Point device would sit.

I am thinking about moving to having a seperate FW to handle all of my
routing between VLANS  That way I could place the IPS in-line between my FW
and the core switch.    Also I would have added security of a firewall at
the core rather then just access lists.

I am wondering if any manufactures have included IPS in their firewall so I
could use one device to do it all.

Thoughts?

_________________________________________________________________
FREE pop-up blocking with the new MSN Toolbar  get it now!
http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/



Check out the Juniper ISG lines....
--
Wes Young
Network Security Analyst
University at Buffalo
GPG Key ID: B0E1E99D
GPG Fingerprint: 5CFE B28C E015 E03F F19D  B4A8 E753 7659 B0E1 E99D
 -----------------------------------------------
| My Security Blog: | http://tinyurl.com/9av4k  |
| My RSS:           | http://tinyurl.com/ceopv  |
| My Life:          | http://tinyurl.com/l18g   |
| CPAN:             | http://tinyurl.com/mujm5  |
 -----------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: