Re: [fw-wiz] Firewalls and IDS

From: Talisker (talisker@networkintrusion.co.uk)
Date: 01/06/03

• Next message: Henning Brauer: "Re: [fw-wiz] Antivirus on a free UN*X (Linux/*BSD) platform"
• Previous message: Jose y Romy: "Fw: [fw-wiz] cisco pix does not log traffic targetted to itself?"
• In reply to: Paul E. Bauer Jr.: "[fw-wiz] Firewalls and IDS"
• Next in thread: Evan Wagner: "Re: [fw-wiz] Firewalls and IDS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Talisker" <talisker@networkintrusion.co.uk>
To: "Paul E. Bauer Jr." <paul.bauer@rimrockgroup.com>, <firewall-wizards@honor.icsalabs.com>
Date: Mon Jan  6 17:45:17 2003

Paul
I wouldn't like to comment on the pros and cons of the products you have
selected and how well they fair against each other, except to say that there
are many other products out there, both Firewalls and Network IDS, whilst
they may not be market leaders they could still be worth considering .....
there are many on the list braver than I that will discuss the pros and cons
of your selection. However, with regard to managing input from equipments
of different vendors I could suggest a few 3rd party products that correlate
such information. The one that springs to mind for Cisco, RealSecure and
Checkpoint is NSM by Intellitactics there is a list of it's supported
clients at http://www.intellitactics.com/products/supported_devices.html
there are a few similar consoles on my website at
http://www.networkintrusion.co.uk/consoles.htm though the list is a little
out of date but due to be updated ASAP (I always say that). With the 3rd
party consoles it's worth looking at how securely they pass the information
and how well they correlate disparate information.

With regard to your choice of Network IDS make sure you try before you buy
ensuring the products are scalable on your network and that the false
positive rate is manageable.

good luck in your quest, and as always if you discover any 3rd party
consoles that I don't have on my list please let me know.

take care
-andy

Taliskers Network Security Tools
http://www.networkintrusion.co.uk
----- Original Message -----
From: "Paul E. Bauer Jr." <paul.bauer@rimrockgroup.com>
To: <firewall-wizards@honor.icsalabs.com>
Sent: Monday, January 06, 2003 3:19 PM
Subject: [fw-wiz] Firewalls and IDS

Does anyone have any opinions on CheckPoint versus PIX and which
intrusion detection system (Cisco IDS or RealSecure on a Nokia box)
would work better with either? Can the Cisco IDS even integrate with
CheckPoint? Thanks for your help.

Paul Bauer paul.bauer@rimrockgroup.com

_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

---

• Next message: Henning Brauer: "Re: [fw-wiz] Antivirus on a free UN*X (Linux/*BSD) platform"
• Previous message: Jose y Romy: "Fw: [fw-wiz] cisco pix does not log traffic targetted to itself?"
• In reply to: Paul E. Bauer Jr.: "[fw-wiz] Firewalls and IDS"
• Next in thread: Evan Wagner: "Re: [fw-wiz] Firewalls and IDS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > Firewall-Wizards  > 2003-01