Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

PIX and IDS

Anyone out there using the new IDS features on a PIX?

How has it worked out?

Have you done any testing to ensure the IDS is catching attacks?

3 REPLIES
New Member

Re: PIX and IDS

We’ve also been considering IDS now that PIX supports it. Have you purchased it? Have you been running into any problems?

yv
New Member

Re: PIX and IDS

Ralph,

I did not use it yet.

But i think it can effect your pix in the performance since it would have to inspect every packet based on the imbedded signatures of its IOS.

As an alternative, get a separate unit to do IDS. for ex: you can get a linux box and run snort (free). It has i think over 300 signatures.

Yury

Medical informatics analyst

New Member

Re: PIX and IDS

you get what you pay for (free -snort). yeah, thats exactly what I'd want to do, run my IDS on one of the world's most insecure OS's.

PIX IDS works fine and doesn't appear to slow down performance. If you want full featured IDS, get a full IDS sensor.

140
Views
0
Helpful
3
Replies
CreatePlease to create content