[Oisf-users] Suricata is the only multi-threaded IDS/IPS currently available?
Jake Gionet
gionet.jake at gmail.com
Fri Jun 28 12:16:29 UTC 2013
As far as I know, Suricata is the only multi-threaded open source
IDS/IPS application. Its only direct competition is Snort, so that
really just means Snort is single-threaded. I don't know much about
commercial appliances; however, based on my exposure to them I would
assume that they are multi-threaded in the way that a dedicated Snort
sensor/server can be multi-threaded: by running multiple instances of
the application and balancing traffic between the instances.
Jake G.
On Fri, Jun 28, 2013 at 2:56 AM, Chintagunta, Murali Mohan
Chakravarthy (HPUX-Network Security)
<murali-mohan.chakravarthy at hp.com> wrote:
> Hello Fellows
>
>
>
> I started exploring Suricata from last couple of weeks.
>
>
>
> I see a lot of focus around Multi-threading feature and its showcased that
> Suricata is only IPS which is having this feature as of now.
>
>
>
> I was wondering if this is correct ?? Cisco and HP Tipping point are also
> having IPS appliances which are multi-threaded right ? Or Am ‘I not
> informed correctly ?
>
>
>
> Is the comparison is only with host based IDS/IPS or with network appliances
> as well ?
>
>
>
> Thanks,
>
> Murali
>
>
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
> OISF: http://www.openinfosecfoundation.org/
More information about the Oisf-users
mailing list