[Snort-users] fail open / fail close

Florin Andrei florin at ...13138...
Mon Mar 7 10:09:50 EST 2005


When building a DYI IDS using Snort and off the shelf hardware, if the
IDS is in-line, it will naturally enforce a fail-close policy if
something goes wrong.
But what if i want to tell the device to fail open? I'm not talking
about sophisticated monitoring of the system health and switching to
open state (although that would be nice, if possible), i'm talking about
fail open if the power fails. Probably some kind of Ethernet hardware is
required, but do you guys know any such hardware? Thanks,

-- 
Florin Andrei

http://florin.myip.org/





More information about the Snort-users mailing list