[Research]
Intrusion Prevention Systems
Looking at IPS boxes recently. The idea being that they’d block virus/worm/etc. propagation, clamp down on spyware, stop some other attacks, and possibly throttle P2P (although the shaper is doing fine in that regard).
- TippingPoint: I keep hearing a lot of good things about them, particularly that they’re very safe and effective with their initial configuration. Also has a watch-only mode.
- FortiGate: some people have them, but I can’t find any good info on their capabilities yet.
- McAfee IntruShield: some like them, and they seem decent. But I’ve never had warm fuzzies about McAfee.
- Checkpoint InterSpect: they’ve been a decent firewall company for a while, so this is probably decent as well. Heard nothing outstanding about them.
- Juniper: has been a fairly good player in the specialized net devices (load balancing, VPN, firewall, etc.) for a while, so they’re probably good. Heard they’re not quite as nice as TippingPoint, though, and they might play more happily in a place where they had Cisco buddies to work with.
- Cisco: seems to have something off the PIX line, but I’ve never been a fan of PIXen.
Posted by Rowan Littell at November 8, 2005 08:11 AM