https://community.cisco.com/t5/network-security/ips-ids-over-firewal/m-p/712227#M1036035 <P>Hello,</P><P>Pls i want some features of IPS/IDS over Firewall</P> Mon, 11 Mar 2019 09:09:34 GMT tamunoforiokuma1 2019-03-11T09:09:34Z https://community.cisco.com/t5/network-security/ips-ids-over-firewal/m-p/712227#M1036035 <P>Hello,</P><P>Pls i want some features of IPS/IDS over Firewall</P> Mon, 11 Mar 2019 09:09:34 GMT https://community.cisco.com/t5/network-security/ips-ids-over-firewal/m-p/712227#M1036035 tamunoforiokuma1 2019-03-11T09:09:34Z https://community.cisco.com/t5/network-security/ips-ids-over-firewal/m-p/712228#M1036058 <HTML><HEAD></HEAD><BODY><P>Hello tamuno, </P><P></P><P>Firewalls can block unnecessary traffic, based on the Layer 4 parameters, TCP / UDP ports, IP address etc.. This device, I can say, blocks around 70 % of the unwanted traffic.. firewalls have basic IPS functionality on the software which is very limited on the total signatures (around 20)... </P><P></P><P>If you are talking about full-fledged security, firewalls cant really do it 9as told above)... simple example is, if there is a mail server, the firewall will permit port 25/110 into the inside network, just by seeing the layer 4 header... wht if the attacker does a port sweep, finds that the firewall has 25/110 open, and introduce vulnerabilities on these open ports?? your network is vulnerable to attacks !!!! IPS will be the DEVICE here, which can inspect packets on layer 7 (application layer) and see if the packets entering the network is allowed/denied.. combining firewall &amp; IPS, network administrators can get 95% of unwanted traffic blocked.. </P><P></P><P>Hope this helps.. all the best.. rate replies if found useful.. </P><P></P><P>Raj </P><P></P><P></P></BODY></HTML> Mon, 18 Dec 2006 03:47:41 GMT https://community.cisco.com/t5/network-security/ips-ids-over-firewal/m-p/712228#M1036058 sachinraja 2006-12-18T03:47:41Z