Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
271
Views
0
Helpful
2
Replies

MASR & IPS

yasirtahir
Level 1
Level 1

‎02-08-2008 07:13 AM - edited ‎03-09-2019 08:04 PM

Can anyone clearly differenciate between the MARS & IPS?

Labels:
0 Helpful
2 Replies 2

srue
Level 7
Level 7

‎02-08-2008 10:20 AM

MARS is a centralized logging device with additional functionality. IPS is an intrusion detection/prevention appliance.

is that enough, or were you hoping for more insight?

0 Helpful

zubairjalal
Level 1
Level 1

‎02-08-2008 11:12 PM

Mars is a correlation engine. i.e it takes logs from all devices in the network like routers,switches,IPS,application servers,firewalls etc. After taking the logs, it correlates the events and creates an incident out of those events. In Mars you also can see the actual path of the attack and you can mitigate the attack by sending Mars recommended conifguration to the devices.

HTH

zubair

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents