Chris Buechler schrieb: > And generally you probably aren't going to want to hook snort into your > network stack like that, because of the limitations of PC hardware. > Commercial IPS devices process rules through ASIC's, which enables them > to fully evaluate every single packet before passing it without > incurring much of a performance penalty (if any). We don't have that > luxury in the PC hardware world. >
Apropos ASIC ... -> http://www.cavium.com/acceleration_boards_NII_NIC.htm -> http://www.sensorynetworks.com/Products/ If the hardware device got a FPGA ... -> http://www.opencores.org/browse.cgi/by_category -- Mit freundlichen Gruessen / With kind regards DAn.I.El S. Haischt Spammers, please please send any mail to: Daniel S. Haischt <[EMAIL PROTECTED]> Want a complete signature??? Type at a shell prompt: $ > finger -l [EMAIL PROTECTED]
