Menu
▾
▴
Re: [Snort-inline-users] fail open nic and snort inline?
|
From: Javier R. P. <jr...@on...> - 2006-03-06 18:13:14
|
Nick Rogness wrote: >> I would like to build a snort based IPS >> solution but I cant seem to find a vendor who >> sells fail open nics. Since snort would be inline, >> I cant have it blocking my network connection if >> the system fails, loses power, etc. >> >> I checked out bypass switches from Netoptics but I would >> like something that can be installed directly in the PC. >> A PCI nic basically. >> >> > > Run 2 snort_inline machines in parallel, using VRRP or CARP or some > other virtual IP/cluster software. > > It will probably be easier (and cheaper) than finding some crazy > hardware solution. > > I don't think is a crazy hardware sollution, if he wants to build an ips solution, it is best a fail open NIC than an IPS cluster, upon 2 solutions may work , the fail open nick, I think is the best, not crazy, but the best adapted. > Nick Rogness <ni...@ro...> > > > > ------------------------------------------------------- > This SF.Net email is sponsored by xPML, a groundbreaking scripting language > that extends applications into web and mobile media. Attend the live webcast > and join the prime developer group breaking into this new coding territory! > http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642 > _______________________________________________ > Snort-inline-users mailing list > Sno...@li... > https://lists.sourceforge.net/lists/listinfo/snort-inline-users > > |