IDS mailing list archives

Re: Multiple network segment monitor with Snort

From: Dpk <dpk () egr msu edu>
Date: Thu, 2 Oct 2003 12:05:32 -0400

On Wed, Oct 01, 2003 at 09:32:06PM +0200, Sergio Pozo Hidalgo wrote:

   I know  that. But Cisco routers  are very expensive.  I was looking
   for cheaper  solutions. My first  desing used a Layer3  switch, but
   then  I  changed  my  mind  (because of  an  impossibility  for  my
   netscreen border router to define  more than two zones), and used a
   cheaper design (but  I think that also less  secure and manageable)
   with no Layer3  switch, but two Layer2 ones. Do  you know any cheap
   Layer2 or Layer3 switch with mirror ports?
   
Look at Foundry Networks, http://www.foundrynet.com.  They have
layer-2/3 devices that do port mirroring.  Also, most of their
products when compared to appropriate Cisco products have similar
features but at a fraction of the price.

Hope this helps,

Dennis Kelly
Network Administrator
College of Engineering
Michigan State University

---------------------------------------------------------------------------
Captus Networks IPS 4000
Intrusion Prevention and Traffic Shaping Technology to: 
 - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
 - Automatically Control P2P, IM and Spam Traffic
 - Precisely Define and Implement Network Security & Performance Policies
FREE Vulnerability Assessment Toolkit - WhitePapers - Live Demo 
http://www.securityfocus.com/sponsor/CaptusNetworks_focus-ids_000101
---------------------------------------------------------------------------

Current thread:

Re: Multiple network segment monitor with Snort Sergio Pozo Hidalgo (Oct 02)
- Re: Multiple network segment monitor with Snort Dpk (Oct 02)
- <Possible follow-ups>
- Re: Multiple network segment monitor with Snort Sergio Pozo Hidalgo (Oct 02)
- Re: Multiple network segment monitor with Snort Sergio Pozo Hidalgo (Oct 02)
- RE: Multiple network segment monitor with Snort kgeorgiades (Oct 06)