The easy answer to your question is "It depends". Do you trust your firewall? Do you trust your internal users? The best solution would be to have an IDS on each side of your firewall. That way you could detect both external and internal threats.
-- Brad A. Nixon CCNP, CCDA, MCP, CCSA "Nothing is fool proof to a sufficiently talented fool." Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48581&t=48420 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
