Security Monitoring and Response

Started by TheBigDog, February 06, 2016, 08:30:51 PM

Previous topic - Next topic

TheBigDog

Hi

I am wondering what security monitoring  and response you could implement on a private. I have come across IPFIX and Cisco Netflow. Any other recommendation and tips.

Thanks

deanwebb

Well... what do you want monitored? Netflow is pretty good for lots of stuff. There can also be syslog solutions, IPS logs, NAC, lots of things. It all depends on what you want to track.
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.

TheBigDog

Something that is general an overall a good monitoring system  that you would implement in a cloud.

NetworkGroover

Engineer by day, DJ by night, family first always