Just ask yourself if the output of an outside sensor is of any value to you. Most of the times it is not and the money is better invested in other things (for example an IPS-training as IPS is a quite complex technologie).
The number of users don't play any role as longs as they are so small numbers as 300. More importand is the bandwidth that you want to protect. For that you need to decide if you only want to monitor the traffic to and from the internet (probably lower bandwidth) or if you also want to monitor your internal traffic (probably higher bandwidth). For inline mode you have to decide how you want to assure the network-availability (the sensor has to restart from time to time and also could fail).
Then you can implement IPS as an standalone appliance and integrated into your ASA or your IOS perimeter-router (if you have one of these).
So, tell us more about your environment and you get more recommendations for you setup.
Our environment uses a Cisco router for the internet router with a IPS device (3rd party) inside that then an ASA 5510 for our internet firewall which has IPS on it as well. We then have another IPS device (3rd party) inside the ASA to monitor internal traffic. The IPS devices are set inline. We're looking at pricing as the cost is a lot per year and would it be better to look at Cisco IPS. I just assumed a device on the outside and inside would be better but not sure of other options.
Segmentation Strategy - An ISE Prescriptive Guide
For an offline or printed copy of this document, simply choose ⋮ Options > Printer Friendly Page. You may then Print, Print to PDF or copy and paste to any other document ...
We have the Endpoint purge to delete any thing over 365 days, but this wasn't working as standard since in was installedSo disabled and enabled again and this seem to fix it, as had just under 200k endpoints captured. But it removed all clients that ...
When we unregister FTD from FMC and re-register, all the static routes are lost on it. Sometimes device has database corruption, if re-image is the only solution then upon re-image, FTD comes up fresh and we need to configure everything from scra...
Hi,I have a very simple question; we have two ASA 5585-X working in Active/Standby Mode with multiuser Contexts.Normally Primary Unit is active for failover group 1 and 2; Secondary Unit is standby !At the moment our Secondary Unit is completely disconnec...
Meet the Authors Event - CCIE Security and Practical Applications in Today’s Network: Zero Trust
(Live event – Thursday, 29th, 2020 at 10:00 a.m. Pacific / 1:00 p.m. Eastern / 6:00 p.m. Paris)
This event will have place on Thursday 29th, October 2020 at 1...