Re: Firewall open source + IPS



On Viernes 10 Julio 2009 13:00:47 Juan B escribió:
Hi all,

Im looking for an FW open source which includes IPS, I know that IPCop has
one but its and ids and not IPS.

any ideas??

many... depends on your requirement.

fwsnort: Is a string patter detection tool that can be mixed with iptables.
fwsnort is an option, i don't test it before, but be careful on fragmentation
attacks. http://cipherdyne.org/fwsnort/

Snort can be configured as IPS with iptables triggers (snort_inline:
http://snort-inline.sourceforge.net/). But this configuration have some issues
and you need to be extra-careful.


thanks !

juan




------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL
certificate. We look at how SSL works, how it benefits your company and
how your customers can tell if a site is secure. You will find out how to
test, purchase, install and use a thawte Digital Certificate on your Apache
web server. Throughout, best practices for set-up are highlighted to help
you ensure efficient ongoing management of your encryption keys and digital
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f72
7d1 ------------------------------------------------------------------------

--
Ing. Aaron G. Mizrachi P.

http://www.unmanarc.com
Mobil 1: + 58 416-6143543
Mobil 2: + 58 424-2412503
BBPIN: 0x 247066C1

Attachment: signature.asc
Description: This is a digitally signed message part.