Re: Snort with IPSec

["Josh Berry" <josh.berry () netschematics com>]

This is not something I have control over, nor am I privy to the reason. 
This decision is being made at the director level above my group and we
are being asked how we could implement it and what the repercussions could
be.

> On Tue, 2003-11-04 at 13:02, Josh Berry wrote:
> > I understand the overhead and difficulty.  I just want to know if it is
> > technically feasible.  The reason I am asking is that one of the
> > directors
> > where I work is considering implementing site wide IPSec encryption for
> > every connection on the internal network.  This will make internal
> > attacks
> > impossible to see, therefore I cannot just sit the IDS behind the VPN
> > because essentially the whole network will be one big VPN.
>
> What is the reason/business case behind this? Do the benefits you gain
> really outweigh the drawbacks?
>
> Curious,
> Frank





-------------------------------------------------------
This SF.net email is sponsored by: SF.net Giveback Program.
Does SourceForge.net help you be more productive?  Does it
help you create better code?   SHARE THE LOVE, and help us help
YOU!  Click Here: http://sourceforge.net/donate/
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users