I agree to your postings and I am also disappointed that they have disabled the snort thing. Disabling a feature due to 3rd party licensing is for sure but they should keep in mind that the most bugs were discovered by "Home User" because the have the ability to fumble around with the ASL. In a productive environment the danger of doing very bad things let the most admins keep their settings for ever and ever - okay adjusting spam rules or up2date things....
Pleaseeeeeee enable the Snort Feature for Home Users. They wouldn't disappoint you.
I am heart broken. IPS/IDS isn't enabled for even Power Users. What license are they talking about? And how much would one cost for a Home User licensee. I may have to stick with my snort bridge.
I agree to your postings and I am also disappointed that they have disabled the snort thing. Disabling a feature due to 3rd party licensing is for sure but they should keep in mind that the most bugs were discovered by "Home User" because the have the ability to fumble around with the ASL. In a productive environment the danger of doing very bad things let the most admins keep their settings for ever and ever - okay adjusting spam rules or up2date things....
Pleaseeeeeee enable the Snort Feature for Home Users. They wouldn't disappoint you.
Greets Marcel
[/ QUOTE ] There is no licensing issues for Snort..it is GPL'ed..they can leave it on without issues..this is a business choice by Astaro not a licensing one.
If we could at least enable it and manage/update the rules ourselves. I'd be fine with that. A tool like idspm should work in conjunction with a cron job possibly to perform any required chmod/chown and copy them appropriately then restart snort.
I'm sure they're aware of the current discussions going on here. They're really good about that. Hopefully they are in internal discussions about this very subject and the wizdom of allowing home user/power users access to the IPS functions. We can only hope.
“My” point: I do not have any reservations paying for a IPS on my commercial firewalls (I will be buying 3 licenses from them shortly), although I do NOT agree with Astaro's pricing model charging the home users for this feature.
I think that we all should stamp our feet a little more until we get a public answer or re-consideration on the IPS for home user’s issue!
Astaro we have been all very faithful to you & I feel very disappointed by you for not including IPS for us.
We as a collective of dedicated home users await your comments!
I would also like to add my comments. I feel that IPS is also just about industry standard on all types of firewall appliances/software.
I feel Astaro's silence on this issue is a good thing, since I would imagine, they are discussing this very issue behind closed doors and trying to make a determination as to whether they'll change the IPS structure or not.
Personally, I feel charging for IPS would hurt Astaro sales as other comparable solutions (both hardware and software) include this feature as part of the base price. Myself and others will fully respect Astaro's decision either way.
First IDS/IPS is not "industry standard" as of right now and is mostly found on huge hardware style firewalls that cost 5-10x more than astaro.
Second, those that DO include IPS rarely have the ability to call on such a constatly updated and quality database such as the snort project.
From a company point of View, The inclusion of IDS and IPS saves money. And it seems VERY Funny that a lot of people here seem to require this for their "home license".
I'll be curious to see when/if astaro implements a "harder" licensing scheme how many people are bit in the ass...
Some of us would like it for our measly home licenses, BEFORE we implement on purchased licenses... what is so hard to understand about that? Through my recommendations, Astaro has gotten over $15K in initial purchases from my employer and our clients. Add on top of that annual renewals.
Also, we are not asking for the up2dates for free. Only the ability to enable the subsystem.
And for 5-10x the pricing point, Cisco PIX 501, under 1000.00, and has basic IDS/IPS. Netscreen also has it, and several others all similarly priced.
1) I cannot see anywhere in this thread where anybody has stated that it is industry standard. It was described as "near" and somebody else referenced "almost". Astaro has always been on the leading edge of firewall technology and has always set the benchmark for “standard” features before they were even considered “standard” by the industry. “I” believe Snort should be one of these features & I guess Astaro has too by including it!
2) There are many lower-end firewall products around that support Snort, Eg. "smoothwall".
3) I believe, like you that a commercial installation should pay for Snort & yes it is a cost saving for companies. I am about to order my Snort licenses for my commercial sites. As we all know the great people at Astaro are not working for charity.
4) You may feel that people do not require Snort on home firewalls. That is your opinion - I do not agree with it and it would seem that there are others who use Astaro who would not agree with you either. I run at home a web-server & I want to know when somebody is trying to attack or probe it along with a magnitude of other problems that Snort can detect. As it seems these days it is not a mater of “if” more of “when”. Yes, I can implement Snort on another box if I really wish but again “I” believe Snort should be integrated into the firewall device (like Astaro has done!). Although there seems to be much debate on this raging on where a IDS should be located.
Let’s not lose sight that Snort is provided to us all under the GNU General Public License along with a rather large database of the attack/probe signatures free of charge. Yes, I realise there has been a lot of time, effort & money invested by Astaro integrating Snort into their product but I do believe it should be a standard feature & as such free for home users.
considering Snort has the ability to detect and kill p2p traffic and with all the lawsuits flying around p2p activity for home users turning htis on would be a boon and give Astaro some great recognition. Also smoothies snort is passive..it only detects it is not setup to stop attacks or unwanted traffic.
