Intrusion Prevention System or IPS
I have actually not seen a ton of people who have an IPS as part of their network defenses. Don't know why really as they can be a valuable line of defense. That said, a crafty attacker can also exploit an IPS and inflict a DoS condition if properly done. That plus these appliances are still prone to the same old tired fragmentation attacks. Any thoughts?