PIX IDS is very simple. You have only 20 predefined attacks that are checked. To allow PIX to detect port scan, Cisco should rewrite a large part of the code of the IDS. PIX IDS is only a support to Cisco IDS (IDS Sensors/Directors and so on) solution (which have the same problem too, Cisco IDS is very limited in functionality, because Cisco try to gives more push on scalability). What IDS you need? There are better and free IDS on the internet (no matter what cisco saying).
-----Original Message----- From: alaerte Vidali [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 12, 2002 6:31 PM To: [EMAIL PROTECTED] Subject: Re: Why PIX's IDS can't detect a port scan? [7:59052] Hi Hato, Could you recommend an IDS ? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=59094&t=59052 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
