Re: [Snort-inline-users] fail open nic and snort inline?

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

> I would like to build a snort based IPS
> solution but I cant seem to find a vendor who
> sells fail open nics. Since snort would be inline,
> I cant have it blocking my network connection if
> the system fails, loses power, etc.
>
> I checked out bypass switches from Netoptics but I would
> like something that can be installed directly in the PC.
> A PCI nic basically.
>

  Run 2 snort_inline machines in parallel, using VRRP or CARP or some
other virtual IP/cluster software.

  It will probably be easier (and cheaper) than finding some crazy
hardware solution.

Nick Rogness <ni...@ro...>