yongsua 16 Posted March 4, 2015 Posted March 4, 2015 (edited) Hi, may I know how does ESS Network Attack Protection (IDS) feature work? Its setting sounds promising for me. "Allows you to activate a functionality from IDS and advanced options (Incoming RPC communication over SMB and Intrusion detection settings) independently from Personal firewall." (Source: ESS manual) However, I have one question. Does it capable to detect data link layer protocol attack like ARP cache poisoning? Since firewall only filters down to transport layer protocol and this IDS or NAP that is independent from the ESS firewall and which is introduced by ESS sounds interesting and promising to me. I would like to hear some explanation for this. Thank You. Edited March 4, 2015 by yongsua
Solution yongsua 16 Posted March 5, 2015 Author Solution Posted March 5, 2015 I find the answer here: hxxp://kb.eset-la.com/esetkb/index?page=content&id=SOLN2906
Recommended Posts