and 2 others joined a min ago.
0
44kviews
Compare Firewall and Intrusion Detection System (IDS)
1 Answer
7
5.6kviews
written 8.0 years ago by
teamques10
★ 68k
|
| Firewall | IDS |
|---|---|
| A firewall is a hardware and/or software which functions in a networked environment to block unauthorized access while permitting authorized communications. | An Intrusion Detection System (IDS) is a software or hardware device installed on the network (NIDS) or host (HIDS) to detect and report intrusion attempts to the network. |
| A firewall can block an unauthorized access to network (E.g. A watchman standing at gate can block a thief) | An IDS can only report an intrusion; it cannot block it (E.g. A CCTV camera which can alert about a thief but cannot stop it) |
| A firewall cannot detect security breaches for traffic that does not pass through it (E.g. a gateman can watch only at front gate. He is not aware of wall-jumpers) | IDS is fully capable of internal security by collecting information from a variety of system and network resources and analyzing the symptoms of security problems |
| Firewall doesn’t inspect content of permitted traffic. (A gateman will never suspect an employee of the company ) | IDS keeps a check of overall network |
| No man-power is required to manage a firewall. | An administrator (man-power) is required to respond to threats issued by IDS |
| Firewalls are most visible part of a network to an outsider. Hence, more vulnerable to be attacked first. (A gateman will be the first person attacked by a thief!!) | IDS are very difficult to be spotted in a network (especially stealth mode of IDS). |
ADD COMMENT
EDIT
Please log in to add an answer.