[ previous ] [ next ] [ threads ]
 From:  "Lee Sharp" <leesharp at hal dash pc dot org>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] IDS
 Date:  Thu, 26 Jan 2006 14:27:37 -0600
From: "sai" <sonicsai at gmail dot com>

> [2] An IDS should be connected to lots of different places on your
> network and needs to have a massive CPU and hard disk.
> A firewall needs a low end cpu and no hard disk. It is connected to one 
> place.
> Totally different machines. Totally different purpose.

I also would say they have very different approaches.  A good IDS system is 
a sneaky thing that watches for intruders.  A firewall is a bold thing that 
blocks them.  However, I can see the virtue of having some easier hooks 
built into m0n0wall for other IDS systems.