IDS on a load balanced BGP network
From: Ian Macdonald (secids@dirk.demon.co.uk)Date: 09/04/02
- Previous message: Brian Morkert: "IDS Research"
- Next in thread: Branden R. Williams: "RE: IDS on a load balanced BGP network"
- Reply: Branden R. Williams: "RE: IDS on a load balanced BGP network"
- Reply: Johnston, Chris D: "RE: IDS on a load balanced BGP network"
- Reply: David W. Goodrum: "Re: IDS on a load balanced BGP network"
- Reply: Branden R. Williams: "RE: IDS on a load balanced BGP network"
- Reply: McCammon, Keith: "RE: IDS on a load balanced BGP network"
- Reply: Boni Bruno: "Re: IDS on a load balanced BGP network"
- Reply: Ramesh Gupta: "RE: IDS on a load balanced BGP network"
- Reply: Greg Shipley: "Re: IDS on a load balanced BGP network"
- Reply: J R: "Re: FW: IDS on a load balanced BGP network"
- Reply: Chris Calvert: "Re: IDS on a load balanced BGP network"
- Reply: Stefano Zanero: "Re: IDS on a load balanced BGP network"
- Reply: SEdwards@toplayer.com: "RE: IDS on a load balanced BGP network"
- Reply: seastham@na.cokecce.com: "Re: IDS on a load balanced BGP network"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Ian Macdonald" <secids@dirk.demon.co.uk> To: <focus-ids@securityfocus.com> Date: Wed, 4 Sep 2002 12:22:42 -0400
Has anyone ever come up with a solution for running a IDS system on a BGP
network.
If I have 2 datacenters that are linked together by a network connection.
Each has its own ISP connection to the internet. BGP is used to so that in
the case of a major failure at one site traffic for things like the web
servers can still come in via the other datacenter and travel via the
datacenter to datacenter link.
My understanding is that with BGP the packets can come over either link.
Does this mean that a season always comes in via the same ISP? or could the
first packet come in via one ISP and the second packet go via the other ISP?
If this is the case how can I set up an IDS to monitor the traffic coming
into both data centers?
Any bright ideas on this?
Ian
- Previous message: Brian Morkert: "IDS Research"
- Next in thread: Branden R. Williams: "RE: IDS on a load balanced BGP network"
- Reply: Branden R. Williams: "RE: IDS on a load balanced BGP network"
- Reply: Johnston, Chris D: "RE: IDS on a load balanced BGP network"
- Reply: David W. Goodrum: "Re: IDS on a load balanced BGP network"
- Reply: Branden R. Williams: "RE: IDS on a load balanced BGP network"
- Reply: McCammon, Keith: "RE: IDS on a load balanced BGP network"
- Reply: Boni Bruno: "Re: IDS on a load balanced BGP network"
- Reply: Ramesh Gupta: "RE: IDS on a load balanced BGP network"
- Reply: Greg Shipley: "Re: IDS on a load balanced BGP network"
- Reply: J R: "Re: FW: IDS on a load balanced BGP network"
- Reply: Chris Calvert: "Re: IDS on a load balanced BGP network"
- Reply: Stefano Zanero: "Re: IDS on a load balanced BGP network"
- Reply: SEdwards@toplayer.com: "RE: IDS on a load balanced BGP network"
- Reply: seastham@na.cokecce.com: "Re: IDS on a load balanced BGP network"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
