Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: How do you implement IDS in havily based switched network?

How do you implement IDS in havily based switched network? 11 years 2 months ago #9226

  • ping
  • ping's Avatar
  • Offline
  • Distinguished Member
  • Posts: 181
  • Karma: 0
The greatest pleasure in life is doing what people say you can not do..!!
The administrator has disabled public write access.

Re: How do you implement IDS in havily based switched network? 11 years 2 months ago #9236

  • Chris
  • Chris's Avatar
  • Offline
  • Administrator
  • Posts: 1446
  • Thank you received: 13
  • Karma: 8
I always try to carry with me a hub for these situations - its amazing how handy it be at times :)
Chris Partsenidis.
Founder & Editor-in-Chief
www.Firewall.cx
The administrator has disabled public write access.

Re: How do you implement IDS in havily based switched network? 11 years 2 months ago #9263

  • ping
  • ping's Avatar
  • Offline
  • Distinguished Member
  • Posts: 181
  • Karma: 0
I thought i understand most of article but latere i thought that i have not clear idea of tape so can anyone of you explain me what is tape and basic functions it performs ?
The greatest pleasure in life is doing what people say you can not do..!!
The administrator has disabled public write access.

Re: How do you implement IDS in havily based switched network? 11 years 2 months ago #9265

I'm assuming you mean a tap so I'll explain what that is. A tap is a device that is inserted on one ethernet cable to provide a means of sniffing the data going to and from the tap without sacrificing bandwidth(like a hub would). The tap device usually has 4 ports. The first two take the terminated ends of the ethernet cable you want to tap. The other two are the ports in which the data tapped from the first two are sent out. One is egress(outgoing traffic) and the other is ingress(incoming traffic). So you run an ethernet cable from those ports to the IDS and you can start passively sniffing.

Taps are usually expensive devices but they are probably the best method to implement a sniffable infrastructure for an IDS on the front lines since the tap does not sacrifice bandwidth. Let me know if that clarified everything for you.
"He who breaks something to find out what it is, has left the path of wisdom."

Gandalf the Grey
The administrator has disabled public write access.
Time to create page: 0.077 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup