02-18-2011 09:14 AM - edited 03-10-2019 05:16 AM
Hi all.
I would like to know how can we turn off cisco ids nomalization engine? Is it complicated one or not?
We have some issue when we enable cisco nomalization engine on ids which is inline mode. some of assymetric traffic will be dropped.
So, we are going to disable cisco nomalization, now.
please give us any advice for us.
Thanks you.
Solved! Go to Solution.
02-18-2011 10:09 AM
Hi Syjeon,
You can set the normalizer mode for the virtual sensor in question to "Asymmetric Mode Protection" to relax the TCP normalization if the sensor is inspecting asymmetric traffic:
You'll want to change the "inline-TCP-evasion-protection-mode" option from "strict" to "asymmetric" for each of the virtual sensors seeing asymmetric traffic.
-Justin
02-18-2011 10:09 AM
Hi Syjeon,
You can set the normalizer mode for the virtual sensor in question to "Asymmetric Mode Protection" to relax the TCP normalization if the sensor is inspecting asymmetric traffic:
You'll want to change the "inline-TCP-evasion-protection-mode" option from "strict" to "asymmetric" for each of the virtual sensors seeing asymmetric traffic.
-Justin
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide