Sean Waite wrote:
> Well in that sense you could say that as well regarding VPN, its not part of the firewall's job.
But I would argue that IDS is of more
> relevance to a firewall than VPN capability. In fact, the number one request now we have from
clients is IDS, VPN is secondary.
> Although I do understand your point, a web proxy can be run separately, I think a lot of users
would appreciated IDS added to monowall.
> At the very least it is one less box to have to muck with.
I dunno about that. As an administrator, one would place an IDS
depending on what one's network topology is and what one wants to
monitor, which is obviously different for each organization.
One might want an IDS sensor outside the firewall, only in the DMZ or
internal LAN or all of the above and more.
Having an IDS as part of a firewall system limits this choice and also
places extra load on the machine.
Let's please leave this off the m0n0wall. Install your Snort/whatever
sensor on a separate machine!