Intrusion Protection software recommendations...

I'm researching Intrusion Detection Software for an SBS 2011 server.  Has anyone utilized a particular IDS for SBS 2011 for more than or close to a couple of years since SBS 2011's release successfully and if so, what brand and version?  Thanks.
eitconsultingAsked:
Who is Participating?
 
dipopoConnect With a Mentor Commented:
Try looking at SNORT. It is opensource and very good indeed, works with Windows and using WinPcap. Depending on your topology, you may need to create a SPAN port on your switch to aggregrate traffic onto a port and connect a NIC from your server to the port, WinPcap should put the NIC in promiscous mode voila you can now sniff everything and based on what you decide in your "Ruleset" generate alerts or actions.

http://www.snort.org/
0
 
Mohammed KhawajaManager - Infrastructure:  Information TechnologyCommented:
TippingPoint (HP)
SourceFire
IBM ISS Proventia

They are all appliances, are expensive and you need to look at your requirements and features  that each one provides to ensure it meets your needs.
0
 
gheistCommented:
I am using IPS as opposed to IDS
0
Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

 
eitconsultingAuthor Commented:
@gheist    IPS and IDS are different and I am reconsidering using both.  However, IPS appears to be embracing more and more IDS functionality but just isn't there yet.  I'm currently looking at SO (Security Onion) as the IDS as well as a separate IPS.
http://blogs.cisco.com/security/ids_and_ips/ 
http://www.networkworld.com/weblogs/security/005784.html
0
 
gheistCommented:
Do you trust compromised IDS to D the I?
0
 
Pankaj_401Commented:
You can Deploy complete monitoring software in you network which will audit your all severs like AD, Exchange and file server in order to get alert for any security breach with in a network
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.