On Sun, 22 Dec 2002, Sean Donelan wrote:
On Fri, 20 Dec 2002, batz wrote:
Lets say you have a an IDS load balancer sitting on a GigE span port with a few sensors watching everything go by. If an alert is triggered, a script is executed which goes out to the router closest to the origin of the session and initiates the overlaid tunnel.
On any major backbone the IDS function becomes
GlobalIDSFunction() { While (1) { printf("Attack Detected!"); } }
An overlaid tunnel initiates each time THIS MANY attack is detected? Wow... I'd imagine...: System restarted by error - a Software forced crash, PC 0x602E3780 :-) -hc
Do you really want an automatic wiretap installed on your line every time an attack is detected? Have you recently connected a system to the Internet that hasn't been attacked?