> Can someone please explain how is an IDS different from an application proxy > firewall in terms of > what each of them looks for in a packet.
It all comes down to the OSI layer they are operating "sniffing" on. Application is layer 7. (http, smtp). So an application FW mostly work at the application layer. Hope this gets you started in your research ;) -- Thanks, JiPi DiNi ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw to learn more. ------------------------------------------------------------------------
