	[x] Posted via EE Mobile
	Search, ask, and monitor your questions on the go with EE Mobile. Visit Experts Exchange from your mobile device and never be out of touch again.

11/05/2009 at 11:28AM PST, ID: 24875711 | Points: 500

	[x] Attachment Details

Network Intrusion Prevention Options - 2009

Asked by Jer in Intrusion Detection Systems (IDS), Miscellaneous Networking

Greetings,

I've tried to go through the knowledge base info, but there were so many returns for so many years, I see it in my best interest to ask the question, perhaps again...

I'm looking into network intrusion prevention options for my environment and would love recommentations from my peers out there that actually work with the solutions. I have plenty of 3rd-party contacts that like to encourage the products that they are partnered with. While understandable, it's not necessarily in my best interest.

Anyhow, I've got a Microsoft shop that consists of a single forest/site/domain that is centralized. I have 400+ users that connect mostly via remote access. Most remote offices are connected via tunnels between a WatchGuard Core X1250e and WG SOHO endpoints. Other remote offices are connected via Sprint MPLS network, with Cisco routers on each end. The WG Core controls all internal traffic. I have a DMZ on the Core, which hosts our public web server. My mobile clients access the network via WG MUVPN software clients. I do NOT want to put anything on the Core itself (hence, I haven't looked my into WG solutions). While it meets my needs for network management, I don't want it resource challenged. I'm looking for a solution that will protect my network from the inside out. Currently, I have a lot of laptops that leave my network and then come back in and simply get scanned for viruses. Definitely not ideal. I do have budget restrictions, so the best bang for the buck is important to me. While I'd love to have the complete solution in place that protects every means of access to my network, I realize that I may not be able to accomplish that all at once. Therefore, the solution should be able to be tiered, with core protection being implemented and then the ability to add to it as time/funds become available. I've been reading a bit into Citrix, Sonicwall, Cisco, and CheckPoint, but I see that there are many others and I don't simply want to focus on what comes up in a Google search.

I appreciate any suggestions that you may provide so tha tI may research further.

Thank you,

Jer

View the Solution FREE for 30 Days

20090824-EE-VQP-74 - Hierarchy / EE_QW_3_20080625

1. richrumble31,642
2. Phateon9,820
3. DaveHowe7,210
4. kenboonejr6,150
5. jfer0x016,000
6. decoleur4,350
7. LingerLon...4,000
8. dpk_wal3,750
9. bignewf3,500
10. MikeHolcomb3,100
11. xmachine3,064
12. arnold3,000
12. Goemanne3,000
14. ikalmar2,750
15. rsivanandan2,650
16. MikeKane2,500
16. uetian17072,500
18. Mestha2,450
19. astralcom...2,200
20. breadtan2,150
21. rcflyr2,040
22. Gns2,000
22. srappaport2,000
22. ehabsalem2,000
22. gheist2,000
22. JFrederic...2,000
22. asavener2,000
22. devinnoel2,000
22. ccomley2,000
22. snoopfrogg2,000
22. TheCaped...2,000
22. Paranorm...2,000
22. JosephGl...2,000
22. deimark2,000
22. granwizz...2,000
22. TurboBorl...2,000
22. oklit2,000
22. shijupaul...2,000
22. techzter2,000
22. Matkun2,000
22. arrow_r...2,000
22. Onkelt2,000
22. 3nerds2,000
22. askb2,000
22. jake_00112,000
22. andrewallen2,000
22. jodylemoine2,000
22. digichris832,000

1. richrumble44,642
2. rsivanandan16,540
3. PowerIT10,300
4. Phateon9,820
5. DaveHowe7,960
6. clearacid7,500
7. jahboite6,880
8. What906,700
9. hfraser6,640
10. dpk_wal6,345
11. kenboonejr6,150
12. jfer0x016,000
13. billwharton5,975
14. arnold5,500
14. shakoush...5,500
16. harbor2354,850
17. decoleur4,350
18. LingerLon...4,000
19. xmachine3,964
20. batry_boy3,900
21. Kelvin_King3,500
21. bignewf3,500
23. bbao3,350
24. MikeKane3,250
25. dpiniella3,200