Re: IDS causing troubles



On Feb 14, 2011, at 1:28 PM, JiPi DiNi wrote:

If inline it has to be a bypass switch not a tap.

an IPS with a TAP is an IDS.
an IPS with a bypass switch configured inline can block on traffic.

You might want to clarify this statement a bit more, for instance, there are tap vendors that make devices called "Vmode" taps, which is essentially an inline tap, the traffic goes through the tap, and sent through an IPS, however if the IPS fails, the vmode tap "fails open" sending the traffic straight through.

This may be what you meant about a bypass switch, but just clarifying the terminology.


--
Joel Esler
http://www.joelesler.net


-----------------------------------------------------------------
Securing Your Online Data Transfer with SSL.
A guide to understanding SSL certificates, how they operate and their application. By making use of an SSL certificate on your web server, you can securely collect sensitive information online, and increase business by giving your customers confidence that their transactions are safe.
http://www.dinclinx.com/Redirect.aspx?36;5001;25;1371;0;1;946;9a80e04e1a17f194