well said guys. i do agree the need of ids and the rules/filters has to be constantly reviewed. knowledge of attempts and scanning done to penetrate ur network is very valuable. alerts may sometime...