The Cisco Secure IDS Sensor is a
dedicated appliance that passively monitors the network and reacts to suspicious
signatures indicating potential malicious activity. The IDS device can be
configured to block this activity. The Cisco IOS-based IDS system is an integral
component of the IOS software and, therefore, lies directly in the packet path,
rather than being a separate appliance. The IOS IDS technology expands the
perimeter protection capabilities offered by the IOS Firewall by being able to
take appropriate actions on packets and data flows that appear to be malicious
network activity or to violate the organization security policy.
Other differences include the following:
-
The Cisco Secure IDS Sensor device processing speed is
faster than that of the IOS feature because of the shared resources design of
the integrated router-based solution.
-
The Cisco Secure IDS Sensor device includes more signatures
than the intrusion detection feature on the Cisco IOS Firewall.
-
The Cisco Secure IDS Sensor device can reconfigure a Cisco
router by dynamically adding an access control list to block intruders, but the
IOS version can’t do this.
-
The Cisco Secure IDS Sensor device can be managed remotely
by the Cisco Secure IDS Director. While the IOS version can send output to the
IDS Director, it doesn’t take instructions from it.
Sections
Comments (0 posted)
Syndication
