From: Muhammad Nasim (muhammad.nasim@gmail.com)
Date: Thu Aug 21 2008 - 11:39:41 ART
First is *IPS* and
Second is Cisco Anamaly Guard Module and Cisco Traffic Anamoly detector
module works in conjuction. One is to detect the Attack and other one is to
block it.
The performance and ability on these two anamoly modules have big question
mark on them as I did not hear good comments about these two products.
The standalone device i.e. Cisco Guard DDoS Mitigation Appliances and Cisco
Traffic Anomaly Detectors are much more better as compare to the their
respective modules.
http://cisco.com/en/US/products/ps5888/tsd_products_support_series_home.html
http://cisco.com/en/US/products/ps5887/tsd_products_support_series_home.html
Remember the standalone devices are very expensive and the solution seems to
be for the BIG BIG online website or portal for example ebay.com,
bbc.comand others.
HTH
2008/8/21 Monica Belluci <mpls1979@gmail.com>
> Dear Security champs ,
>
> I have one question
> You have a customer that is looking to mitigate DDOS attack . Which two of
> the following cisco security products
> would you recommend to complete requirement
>
> a) Cisco IPS
> b)Cisco ASA
> c)Cisco IOS Firewall
> d)Cisco Anomaly Guard Module
> e)Cisco FWSM
> f)Cisco Traffic Anomaly detector module .
>
> Which are Two ?
>
> thanks
> Monica Bell
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>
-- Muhammad Nasim Network Engineer Saudi ArabiaBlogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Mon Sep 01 2008 - 08:15:31 ART