In article , "Farhan Ahmed"
wrote:
Well the Cisco Secure IDS would sit on the inside network and have all
traffic SPANed to it. Any unencrypted packets would easily trip an alarm
unless it was a MIMEd e-mail and then someone else would have to scan the
document. As for IPSec, in an environment dealing with documents that
you wouldn't want out, you'd have to deny this type of traffic from
leaving since the IDS wouldn't be able to make out anything in the
encrypted payload.
> how its possible for ids to read the contents of packet for eg
> "confidential doc" and generate an alaram
>
> what if somebody using vpn from inside network to somewhere else to
> transfer confidential information
>
> what does it means that ipsec is ,,,,,,,,,,,
> misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
--
Larry Lamb, CCNP, CCDP, MSCE, MCP+I
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=14033&t=13516
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
