RE: Gateway IDS
From: Rob McMillen (rvmcmil@cablespeed.com)Date: 06/25/02
- Previous message: Gary Halleen: "RE: FW: Trons 7.0 (was Re: RealSecure IDS 6.5)"
- In reply to: Jochen Vogel: "Gateway IDS"
- Next in thread: Christopher Cantrell: "re[2]: Gateway IDS"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Rob McMillen" <rvmcmil@cablespeed.com> To: "'Jochen Vogel'" <jvogel@it-sec.de>, <focus-ids@securityfocus.com> Date: Mon, 24 Jun 2002 19:02:09 -0400
Not a perfect solution, and I haven't updated (new iptables and new snort).
However, if you are using Linux, this might help.
http://w3.cablespeed.com/~rvmcmil
You can also take a look at hogwash
http://hogwash.sourceforge.net/
Rob
-----Original Message-----
From: Jochen Vogel [mailto:jvogel@it-sec.de]
Sent: Monday, June 24, 2002 4:14 AM
To: focus-ids@securityfocus.com
Subject: Gateway IDS
hi,
since last year i search a working gateway IDS solution.
i search a solution that work like a firewall but additionally
can block packets after an correlation with IDS signatures.
the solution to send RST packets or reconfigure a firewall
is nice but not really about latency or spoofing packets.
greets
Jochen
- Previous message: Gary Halleen: "RE: FW: Trons 7.0 (was Re: RealSecure IDS 6.5)"
- In reply to: Jochen Vogel: "Gateway IDS"
- Next in thread: Christopher Cantrell: "re[2]: Gateway IDS"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
