Ask the Expert

What is the best possible IDS deployment for an Enterprise Resource Planning (ERP) system?

Do you have any recommendations for the best possible IDS deployment for an Enterprise Resource Planning (ERP) system?

    Requires Free Membership to View

There really aren't any special circumstances that would make an IDS deployment for an ERP any different from any other IDS deployment. I'm assuming that your ERP is in a data center protected by a firewall and that the application and database servers may even be in separate firewall zones.

In that case, I would suggest deploying an IDS with the ability to monitor each of your network segments. Resources permitting, it's a good idea to have the ability to see into each of your zones. This will allow you to monitor traffic that passes between devices within the same zone and never reaches the firewall. Depending upon your data center architecture, it may even be possible to use a SPAN port to provide traffic from more than one zone to the same IDS sensor or network interface card (NIC).

Also consider deploying some intrusion prevention system (IPS) functionality. For more information, read my recent tip entitled "Network intrusion prevention systems: Should enterprises deploy now?".

More information:

This was first published in February 2008

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: