Snort mailing list archives
net layout
From: sauron <sauron () linuxvalpo cl>
Date: Tue, 8 Jul 2003 01:08:45 -0400
hi, i have a adsl connection whith static ip. i want to deploy an ids system
but i have my dudes about it design, so i came here to ask for advice.
my net right now look like this.
$$$$$$$$$
$ $
$ Internet $
$ $
$ $
$$$$$$$$$
||
||
||
-------------------
| Adsl modem |
------------------
||
||
=======> ( H U B )
| | |
| | |
| | |
/ | \
/ | \---swich->LAN
/ |
/ (IDS)
|
|
( Firewall)
1. I guess the firewall must be rigth behind the adsl modem (which is always
on) and this modem should forward all the traffic to the firewall.
2. The IDS placement i think is ok.
3. The switch LAN should be connect directly to the firewall?
4. the order would be this:
internet->modem->firewall->Hub->IDS
|
|->Switch->LAN ?
5. if the order is right in 4, the modem should redirect all the traffic to
the firewall, its doing NAT at the moment.
Well, that is. Thank for yours answers.
-------------------------------------------------------
This SF.Net email sponsored by: Free pre-built ASP.NET sites including
Data Reports, E-commerce, Portals, and Forums are available now.
Download today and enter to win an XBOX or Visual Studio .NET.
http://aspnet.click-url.com/go/psa00100006ave/direct;at.asp_061203_01/01
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- net layout sauron (Jul 07)