Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
171
Views
0
Helpful
1
Replies

IDS placement

dong-lee
Level 1
Level 1

‎11-19-2003 08:26 AM - edited ‎03-02-2019 11:50 AM

Hi,

We are trying to put Intrusion Detection system (IDS) between BGP speaking devices...we came up with an idea but not really sure if this will work.

We have three routers connected to layer3 switch via fiber. These devices are fully meshed and runing BGP as daigram below,

Rt1-------Rt2-------Rt3

- - -

- - -

- - -

Layer3 switch

-

-

Internal Network

Now, we are trying to put IDS between routers and layer3 switch by adding cisco 3550 as diagram below,

Rt1-------Rt2-------Rt3

- - -

- - -

- - -

Cisco3550-12g

-

-

IDS

-

-

Layer3 switch

-

-

Internal Network

This may work if we make cisco 3550 as passive switch, but I'm trying to get some second opinion, advise or suggestions....

Thank you

Labels:
0 Helpful
1 Reply 1

b.speltz
Level 4
Level 4

‎11-27-2003 10:28 PM

I think this is best option for implementing the IDS. As IDS will be helpful in understanding the BGP traffic if it located in this way.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents