On Fri, Feb 11, 2011 at 2:14 PM, Joel Jaeggli <[email protected]> wrote: > On 2/11/11 10:23 AM, Matthew Fitzgerald wrote: >> Joel, its inline because prevention requires intervention. > > It doesn't actually require that, plenty of ips systems can do their job > with a tap and another port for injection. > >> You bring >> up a good point though, perhaps the issue should be taken outside of >> the technical arena and brought to the business/contract folks to >> reset expectations around prevention/detection.
If inline it has to be a bypass switch not a tap. an IPS with a TAP is an IDS. an IPS with a bypass switch configured inline can block on traffic. Thanks, JiPi DiNi ----------------------------------------------------------------- Securing Your Online Data Transfer with SSL. A guide to understanding SSL certificates, how they operate and their application. By making use of an SSL certificate on your web server, you can securely collect sensitive information online, and increase business by giving your customers confidence that their transactions are safe. http://www.dinclinx.com/Redirect.aspx?36;5001;25;1371;0;1;946;9a80e04e1a17f194
