Re: [fw-wiz] Thoughts on the new Cisco ASA 5500 firewalls

• Previous message: ArkanoiD: "Re: [fw-wiz] Thoughts on the new Cisco ASA 5500 firewalls"
• In reply to: Tichomir Kotek: "Re: [fw-wiz] Thoughts on the new Cisco ASA 5500 firewalls"
• Next in thread: Marcus J. Ranum: "Re: [fw-wiz] Thoughts on the new Cisco ASA 5500 firewalls"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: Tichomir Kotek <tichomir.kotek@lynx.sk>
Date: Fri, 20 May 2005 19:09:00 +0400

Well, the obvious conclusion is that what it does filter and what it does
detect by IDS are not exactly the same data stream because of implementation
issues.

On Fri, May 20, 2005 at 12:32:55PM +0200, Tichomir Kotek wrote:
> Chris Byrd wrote:
> > I just spoke with a Cisco sales rep about this. According to him, the
> > ASA 5500 is running the same OS as the latest Pix FWs (7.0), with the
> > other stuff bolted on top. It is also running the same ASICs as their
> > IPS devices. That does make me feel a *little* better about this, but
> > I do still need to eval one in person.
>
> actually IDS/IPS is handled in separate module, where you can "route"
> traffic flows for inspection, so at least this do not overload central CPU.
>
> tk
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards@honor.icsalabs.com
> http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
>
> email protected and scanned by AdvascanTM - keeping email useful - www.advascan.com
>
>
>

_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

• Previous message: ArkanoiD: "Re: [fw-wiz] Thoughts on the new Cisco ASA 5500 firewalls"
• In reply to: Tichomir Kotek: "Re: [fw-wiz] Thoughts on the new Cisco ASA 5500 firewalls"
• Next in thread: Marcus J. Ranum: "Re: [fw-wiz] Thoughts on the new Cisco ASA 5500 firewalls"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]