[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Checkpoint IPS

Subject: Checkpoint IPS
From: colinj at gt86car.org.uk (Colin Johnston)
Date: Fri, 6 Feb 2015 16:49:09 +0000
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <CACAVgUy0Q8_wHcmez2FHg0sVJUynGJ_P85AoRkn=UJ73aprcEQ@mail.gmail.com> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]>

yes, using new rules via test ips good best practice as well.


> On 6 Feb 2015, at 16:47, Darden, Patrick <Patrick.Darden at p66.com> wrote:
> 
> 
> Auto-Update can cause problems.  I take the stance that updates should be verified in a CERT or ISO first, before being operationalized.
> --p
> 
> -----Original Message-----
> From: Colin Johnston [mailto:colinj at gt86car.org.uk] 
> Sent: Friday, February 06, 2015 10:46 AM
> To: Darden, Patrick
> Cc: Colin Johnston; Roland Dobbins; nanog at nanog.org
> Subject: [EXTERNAL]Re: Checkpoint IPS
> 
> Yes, update can cause problems, same as router code updates as well.
> but update is price of progress.
> 
> Col
> 
>> On 6 Feb 2015, at 16:44, Darden, Patrick <Patrick.Darden at p66.com> wrote:
>> 
>> 
>> Sorry, didn't mean to imply otherwise.  Had an incident back in ~2004 where an IPS signature update closed ALL network traffic.  Including fix-it updates.  Definitely a case where the IPS caused major difficulties for a network.
>> 
>> --p
>> 
>> -----Original Message-----
>> From: Colin Johnston [mailto:colinj at gt86car.org.uk] 
>> Sent: Friday, February 06, 2015 10:32 AM
>> To: Darden, Patrick
>> Cc: Colin Johnston; Roland Dobbins; nanog at nanog.org
>> Subject: [EXTERNAL]Re: Checkpoint IPS
>> 
>> Thought I would add
>> 
>> Astaro IPS works great, great functionality and does prevent ddos and exploits.
>> 
>> Colin
>> 
>

References:
- Checkpoint IPS
  - From: m.hallgren at free.fr (Michael Hallgren)
- Checkpoint IPS
  - From: rdobbins at arbor.net (Roland Dobbins)
- Checkpoint IPS
  - From: m.hallgren at free.fr (Michael Hallgren)
- Checkpoint IPS
  - From: terry.baranski.list at gmail.com (Terry Baranski)
- Checkpoint IPS
  - From: rdobbins at arbor.net (Roland Dobbins)
- Checkpoint IPS
  - From: terry.baranski.list at gmail.com (Terry Baranski)
- Checkpoint IPS
  - From: eksffa at freebsdbrasil.com.br (Patrick Tracanelli)
- Checkpoint IPS
  - From: Patrick.Darden at p66.com (Darden, Patrick)
- Checkpoint IPS
  - From: rdobbins at arbor.net (Roland Dobbins)
- Checkpoint IPS
  - From: Patrick.Darden at p66.com (Darden, Patrick)
- Checkpoint IPS
  - From: colinj at gt86car.org.uk (Colin Johnston)
- Checkpoint IPS
  - From: Patrick.Darden at p66.com (Darden, Patrick)
- Checkpoint IPS
  - From: colinj at gt86car.org.uk (Colin Johnston)
- Checkpoint IPS
  - From: Patrick.Darden at p66.com (Darden, Patrick)

Prev by Date: Checkpoint IPS
Next by Date: Input Regarding Cogent and NTT
Previous by thread: Checkpoint IPS
Next by thread: Checkpoint IPS
Index(es):
- Date
- Thread