A firewall is an essential component for protecting information
assets. However, a firewall alone is not totally effective.
When people are allowed to connect through a firewall, a possible
route for attacking the host beyond that firewall is opened
by you. Such possible attacks from inside the data stream can
be avoided by installing an intrusion prevention system (IPS).
An IPS is primarily installed in two locations either network-based
or host-based. Both network- and host- based systems are complementary.
When selecting the numbers and place of these IPS
facilities, an inclusive solution must also be considered.
