-
June 5th, 2002, 10:01 PM
#1
What is best for intrusion detection?
What would you guys recommend is best for intrusion detection/blocking?
Currently I uses Symantec Internet security 2002, with the anti-virus package? Could I get something better? And also is there any benefit in using multiple firewalls at the same time?
Thanks in advance
\"When I give food to the poor, they call me a saint. When I ask why the poor have no food, they call me a communist.\" -- Dom Helder Camara
-
June 5th, 2002, 10:34 PM
#2
Junior Member
Cisco PIX firewall security series are hardware firewalls runing what are considered hardened IOS. These are hardware and not software firewalls. They have many security features not found in other units also I recommend SonicWall, Netscreen.All of them can support from 10 to thousands computers and have advanced & stong security management tools such as:
- schedule based rules, Dos protection, VPN server/client , Qos/tos management, and you are looking at a lot of money here for this kind of hardware. For the average person on one OS software is the best. And since you are using Norton , you could not have picked a better software. Right now Norton ranks number one after being tested against other software firewalls. As long as you continue to get your updates , you should be in tip top shape. BTW, many test were run on NORTON and it came out smelling like a rose on the leak test and all other test that they tested NORTON on. Right now the two top ones , are NORTON and Zone Alarm , but many are questioning that Zone Alarm is spyware because when it say click here to uninstall.. it doesn't completely . That is another story all it's own I won't get into. But stick with what you have. You made a wide choice. (BTW I am here posting as our board is getting worked on and is not up)
Adore
HDC
-
June 5th, 2002, 10:38 PM
#3
Junior Member
BTW the answer to your second question , I posted it on this other persons thread you can click here to read it.
http://www.antionline.com/showthread...hreadid=228993
Adore
-
June 5th, 2002, 10:46 PM
#4
HUH?
Well HDC admin, I hope you're running Norton and ZA cause both of them blow chunks. really good advice, sarge.
Hey, Mahakaal, a good IDS is snort. If you want a good firewall that has some IDS capabilities ( I'm going out on a limb here and assuming you're a windows user) the might I recommend 3.
And to answer your last question, NO. It affords you no more protection. If you want more protection then a gateway box running say FreeBSD or OpenBSD w/ iptables/ipchains in between your work box and your inet connection would do well.
Another quick gateway box that's really easy to use look here.-> www.clarkconnect.org
sygate www.syagte.com
tiny www.tinysoftware.com
outpost www. agnitum.com
edit -typo
Mankind have a great aversion to intellectual labor; but even supposing knowledge to be easily attainable, more people would be content to be ignorant than would take even a little trouble to acquire it.
- Samuel Johnson
-
June 5th, 2002, 11:06 PM
#5
-
June 5th, 2002, 11:20 PM
#6
Senior Member
IDS systems...well mostly easy to bypass but they keep the script kiddies away... I've tried ZoneAlarm but the little popup-boxes really pisses me off... it's hard to secure a box if u often install new software/games that needs access to the Net... Symantec Internet security 2002 is ok, and it should keep most morons away... (u could of course just install *nix on ur box and use some of the buildin firewall services hehe )
zion1459
Visit: http://www.cpc-net.org
\"Software is like sex: it\'s better when it\'s free.\" -Linus Torvalds
-
June 5th, 2002, 11:30 PM
#7
Senior Member
you could use a honeypot... back on track, use snort, its one of the best ids
-
June 6th, 2002, 12:04 AM
#8
Junior Member
KorpDeath,
If you could provide some evidence as to why Norton and Zone Alarm "blow chunks," I'd appreciate it. If you could direct me to some url's, thanks.
BTW, Adore seems to know a lot about network security, far above little software firewalls. Given that she's provided far more evidence to her case than yours, I'd tend to believe her, HDC admin or not.
N2N
-
June 6th, 2002, 02:53 AM
#9
Junior Member
Korp I do not use Norton or Zone Alarm. I use HARDWARE , not SOFTWARE.
A.
-
June 6th, 2002, 03:56 AM
#10
KorpDeath, your unsupported statement of 'blowing chunks' is really considered invalid for me. In my opinion, adore stated all her opinions firmly, unlike you.
-{[ Joe ]}- (Joe@nitesecurity.com)
http://www.nitesecurity.com
[shadow]I\'m Just A Soldier In This War Against Ignorance.[/shadow]
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|