Network Threat Protection pros and cons
Updated: 21 May 2010 | 6 comments
When we rolled out SEP we decided that we were not going to roll out NTP since we already had Windows Firewall enabled on our clients. However, we are reconsidering it and would love to hear some of your pros and cons of using it. I currently have most of my clients up to 11.0.4 mp2.
discussion Filed Under:
Comments
NTP is not really about the
NTP is not really about the FW, which BTW superior to the Windows FW in every way...
But more so IPS. Without IPS, you are losing a lot of security. With IPS enabled, you will increase security from malicious attacks by more than 1000%, no joke, and that is not just marketing hype.
There is an online portal, save yourself the long hold times. Create ticket online, then call in with ticket # in hand :-) http://mysupport.symantec.com "We backup data to restore, we don't backup data just to back it up."
can you be more
can you be more specific?
Unfortunately, being a research facility, we have a fairly open environment where IT has a very difficult time dictating policy. I dont want to get into the politics, but we end up being more reactive than proactive when it comes to these things. So I am
Malicious attacks are not
Malicious attacks are not about viruses being planted and executed. Malicious attacks now come in the form of network, OS, and app vulnerability attacks, which then allow an attacker to run arbitrary code on the machine. AV alone cannot stop the majority of today's attacks.
This is where IPS comes in. Stop the attack at the network level, before it has a chance to plant itself at the filesystem level. Everyone should have IPS deployed and running with SEP.
The Firewall, I feel is much more powerful, and best of all the logging is there to help diagnose and pinpoint issues whether they are malicious, or just dubugging.
Your best bet is to play with the different features, as there is so much it can do. If anything, go ahead and deploy NTP, with just the IPS policy enabled, and see how there is virtually no impact to your workstation. Note, I'm not sure if the XP SP3 issues have been addressed in the latest builds with NTP.
There is an online portal, save yourself the long hold times. Create ticket online, then call in with ticket # in hand :-) http://mysupport.symantec.com "We backup data to restore, we don't backup data just to back it up."
The windows firewall is
The windows firewall is lame............... not to mention lack of logs and lack of ease of configurability.
Plus I can make holes in it without trying.
It's MSs attempt to get security into XP because people jumped all over them for the wide-open OS.
The windows firewall is for home users and tiny shops, I'd not protect a business with it.
My sites - http://theamcpages.com & http://antique-engines.com
Toy:
Shadow:
Thanks Shadow, Do you lock
Thanks Shadow,
Do you lock alot down or are you pretty open? Any significant issues with it?
NTP is a network packet
NTP is a network packet scanning engine in Endpoint
Pros,
Con
Prashant Bharadwaj, CEH, MCTS Windows Server 2008 Active Directory, Configuration, SCS Symantec Endpoint Protection 11.0
Would you like to reply?
Login or Register to post your comment.