VPN network protection by IDS system implementation

Basic VPN network protections are initially handled by a firewall system. However, this protection is usually insufficient and needs additional improvements. An improved method for detection and elimination of the security problems is setting up the IDS system for timely notification of malicious actions on the network. The concept of a firewall and IDS system was used in this paper as a joint mechanism for improved VPN network security. The proposed security system consists of firewall, syslog server and email server and is implemented in real environment and tested against some frequent DoS attacks. The easiest attacks were realized through the frequent (FTP, HTTP, RDP) open ports to the VPN network and successfully detected. Malicious activity system alert is a mechanism for starting an active response to IDS attack and for blocking the attacker, as well as establishing the full functionality of the network.