• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 167
  • Last Modified:

IDS helps

Dear All

I have another important question.

Now I have my IDS connected to my lan.. my network is like this ...

I have 20 sites(Networks) 9 of them are connected using a Fiber cable (same subnet) and the other are connected to me using one router.
Can IDS in my location (site1) detects the Intrusions in other sites which connected to me by a router??
i can ping any Ips in thos sites.

0
ibmas4002
Asked:
ibmas4002
1 Solution
 
Tim HolmanCommented:
No.  IDS's need to be on the same physical network to sniff and analyse the data, and work at layer 2.
In theory, you could setup SPAN / RSPAN ports on your switches, and trunk the entire layer 2 of all your networks to a single point on your own network, but you'd need a pretty big IDS to cope with all that.

0
 
ibmas4002Author Commented:
tim_holman Thank you
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Simple Misconfiguration =Network Vulnerability

In this technical webinar, AlgoSec will present several examples of common misconfigurations; including a basic device change, business application connectivity changes, and data center migrations. Learn best practices to protect your business from attack.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now