Migration to Cisco IDS 4250 Sensor improves intrusion detection performance and manageability.

Article Summary:

In 2001 the Cisco Information Security group, working with Cisco IT, installed more than 35 Cisco IDS 4250 Sensors worldwide, allowing the Information Security group to respond more quickly to intrusions, limit damage from attacks, and better understand perimeter security.

This security case study describes the Cisco IT architecture using the IDS 4250 Sensors, business benefits from the deployment, and installation considerations, including:

  • Tuning the anomaly signature sets
  • Reducing false positives
  • Responding to attacks