For recommending some security appliance like IPS, more information is necessary. The information like:
• What company needed to protect?
• How many concurrent connection needed?
• How many new connection per second you need?
• How much bandwidth used by servers behind IPS?
• How much budget company can pay for this appliance?
But based on your information, in generally you can used: Cisco Firepower 9300 series or Fortinet fortigate 7000 series or higher.
Search for a product comparison in Intrusion Detection and Prevention Software (IDPS)
Find out what your peers are saying about Darktrace, Vectra AI, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS). Updated: March 2024.
What Is an Intrusion Detection System? Intrusion detection systems (IDSes) analyze network traffic for signatures of known attackers. The systems can be hardware devices or software solutions. An IDS can mitigate existing malware, such as backdoors, rootkits, and trojans.The goal of an intrusion detection system is to detect an attack as it occurs. The system starts by analyzing inbound and outbound network traffic for signs of known attackers.
Some activities an IDS performs...
For recommending some security appliance like IPS, more information is necessary. The information like:
• What company needed to protect?
• How many concurrent connection needed?
• How many new connection per second you need?
• How much bandwidth used by servers behind IPS?
• How much budget company can pay for this appliance?
But based on your information, in generally you can used: Cisco Firepower 9300 series or Fortinet fortigate 7000 series or higher.
Commercial or Open Source?
1) AlienVault has both, their “open source SIEM”, and a commercial version.
2) Bro Network Security monitor is also an excellent IDS.
3) Snort is also very well regarded. There have both open source, and commercial implementations.
These are three good solutions to check out.
Regards,
Craig