> Put simply. te firewall is the lock on the door.
> The IDS is the burlar alarm that goes off when the door's opened.
In part. I prefer the analogy that
The external firewall is the police
The machine firewall is the lock on your door
The IDS is two things
The burglar alarm
The set of photographs and inventory list so you can find out
if anything was taken
The backup tapes are the insurance company
In many ways the IDS side at a company level is more important. If you don't
see an intrusion you won't realise too late that someone got in. Bear in
mind that the machine level firewall may not be enough, most professional
computer crime is people already living behind your door.
Alan
