• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1566
  • Last Modified:

IDS/IPS Audit

Has anyone evr had or bought in an IDS/IPS (cisco IPS4240) audit, and if so what do the auditors/pen testers/security consultants test and report on? Are there any best rpactice config and management guides for cisco IPS 42 40's? Or any generic best practice for managing/config'ing IDS's
0
pma111
Asked:
pma111
  • 2
1 Solution
 
btanExec ConsultantCommented:
You can check out NSS Lab methodology of testing IPS (2nd link), will be useful as a guide since most of the big player including CISCO participate in such testing. In the methodology the test cases are shared as well as the probable test environment. The tools are listed too

@ http://www.nsslabs.com/research/network-security/network-ips/cisco-4260-sensor-ips-individual-test-report-q3-2010.html
@ http://www.nsslabs.com/assets/Methodologies/nss%20labs%20ips%20group%20test%20methodology%20v6.1.pdf

CISCO also has some brief guidelines

@ http://www.cisco.com/en/US/prod/collateral/vpndevc/ps6525/ps7264/ps6634/IOS_IPS_Best_Practices.pdf
@ http://www.cisco.com/web/about/security/intelligence/securetcl.html
@ http://www.cisco.com/web/about/security/intelligence/cwilliams-ips.html

Specifically on government general practices and guidelines, suggest that you check out
a) DISA STIG (deployment/policy) - http://iase.disa.mil/stigs/net_perimeter/network_infra/firewall.html
b) NIST SP800-94 @ http://csrc.nist.gov/publications/nistpubs/800-94/SP800-94.pdf
0
 
btanExec ConsultantCommented:
you may be interested in this IDS test tool

@ http://marcoramilli.blogspot.com/2011/05/ids-testing-frameworks.html
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now