| Upper management is ultimately responsible for policy implementation. | |
| Security is static and should prevent most known attacks on the network. | |
| The self-defending network should be the key point of your security policy. | |
| Integrate security throughout the existing infrastructure. |
| They are more vulnerable to evasion techniques than IDS. | |
| They operate in promiscuous mode. | |
| They operate in inline mode. | |
| They have no potential impact on the data segment being monitored. |
| Implements blocking to stop an attacker | |
| Uses inline mode | |
| Uses IP logging to send alerts | |
| Only supports signatures to look for an attack |