compare current Intrusion Detection System !

there's many IDS: snort, Cisco IDS, RealSecure, NetProwler, Dragon, etc...
please experts, tell me their features; comparing their abilities, their strengths, their weakness.
Who is Participating?
Tim HolmanConnect With a Mentor Commented:
SC mag have done a few vendor-neutral reviews in the past:

Tim HolmanCommented:
Do you really need IDS ?
It's a forensics tool, and although a very useful part of the security picture, it won't actually prevent intrusions without weeks worth of tuning and false positive removal...  and even then, I would not trust an IDS with upstream ACL modification and TCP reset ability not to do anything with my genuine traffic !
If you want to prevent intrusions, rather than detect (and notice a few days later), then you need an IPS.
Look at the IPS 5500 from TopLayer for example -  :)

hoaivanAuthor Commented:
i just do some researches on IDS, not for choosing which product to buy/use.
and i wanna have a perspective of ids products.
sounds like a very general question. So: do you have any problems keying in IDS in yur favorite search engine?
Or what else do you expect as answer?
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.