isn't network anomaly detection typically something, which can only be done on rather large networks? In addition, wouldn't one need management access (at least monitoring) to not only servers but especially to large numbers of routing devices (or have NIDS devices listening on a ton of network segments?).

Or did I misunderstand what you meant by anomaly detection? In what context are you researching (e.g. academic, enthusiast, small business, enterprise, ISP, govt)?


...Niels



Michael Gale wrote:


I'll take the lack of responses a no.

Thanks anyways.

Michael.


Michael Gale wrote:

Hello,

    I am fairly new to the list :)

Does any one here have experience with a NIDS (Network Intrusion Detection System) that uses a form of network anomaly detection ? or has any one here used any commercial software that does or claims to do network anomaly detection ?

The reason I am asking is I am trying to research the current topic and have found a lot of view pro and against the method.

I am looking at network anomaly detection for the purpose of only alerting as to what has changed on the network and not as a security measure.

Thanks.

Michael.


_______________________________________________ clug-talk mailing list [email protected] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying


_______________________________________________ clug-talk mailing list [email protected] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying

Reply via email to