You just need some access-lists and some rate limits set on your interfaces.
you can use IDS but consider the memory usage and performance impact on the routers along with signature coverage and signature updates..
I would just add some access-lists and do the rate-limit on the int's needed.
Here is a good link to help you out.
http://www.cisco.com/warp/public/707/newsflash.html
-jambrose