This is a very good discussion topic. 70% of attacks are from insiders according to Bruce Schneier. As far as i know, Fortinet FortiGate firewall could detect intrusion across vlan. That means it can detect intrusion bypass firewall. but i have no idea of dealing with an intrusion within a lan.
2 Mar 2006 23:47:59 -0000, [EMAIL PROTECTED] <[EMAIL PROTECTED]>: > Is there a way to setup a scan and be notified of an intruding pc that is > physically plugged into the network? When you have an enviroment with a large > amount of network jacks, it's hard to make sure the ones no longer in use are > turned off, and that no "visitors" have sat down to use your network > connections, esp. if you have a large amount of contractors in and out. It > got me to searching the net, and so far I have found one cemmercial product > that can do it, but nothing else. Any suggestions? > > ------------------------------------------------------------------------ > Test Your IDS > > Is your IDS deployed correctly? > Find out quickly and easily by testing it > with real-world attacks from CORE IMPACT. > Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 > to learn more. > ------------------------------------------------------------------------ > > -- We collect spam for research at: mailto:[EMAIL PROTECTED] ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more. ------------------------------------------------------------------------
