For IDS detection and prevention you could also look at using Snort and Hogwash. From my research Hogwash is a IDS prevention application built off Snort. It is designed to be placed inline and can be used with no IP support on your box limiting your risk to IP attacks.

The Hogwash web site address is http://hogwash.sourceforge.net

Hope this additional data is helpful.