IPS position

Unanswered Question
Aug 6th, 2009

i have one doubt my network is scenario is first firewall ASA 5580 one DMZ netowork and one inside network ips is connected to INSIDE network its connected into switch does it monitor DMZ traffic. please let me know.



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
rhermes Thu, 08/06/2009 - 10:28

The ASA 5580 is a pretty big firewall and it does not have a slot for an AIP-SSM IPS module. What model IPS sensor(s) do you have? Idealing you would like to monitor the DMZ and the internal network. Look at some traffic stats on your firewall to see if your sensor can handle the total bandwidth of both DMZ and Internal networks. Did you plan on putting your sensor in-line? Do you have enough sensor interface pairs?


This Discussion