cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
23291
Views
33
Helpful
78
Replies

Ask the Expert: Cisco Intrusion Prevention System (IPS)

ciscomoderator
Community Manager
Community Manager

Read the bioWith Robert Albach

 

Welcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn and ask questions about security best practices and management for the Cisco Intrusion Prevention System (IPS) with Robert Albach. The Cisco Intrusion Prevention System is a context aware threat prevention system for your networked environments. The module unobtrusively detects and prevents problematic traffic from reaching its target; uses contextual inputs to determine the proper level of response; and tightly integrates with the ASA firewall for greater network security.

 

 

Robert Albach is a product manager in the Security Business Unit at Cisco, responsible  for intrusion prevention offerings. Before joining Cisco in 2010 he held product management positions for intrusion prevention offerings at Hewlett-Packard/TippingPoint. He has more than 15 years of experience with systems management and security product offerings and has presented at the RSA trade show and other security venues.

 

 

 

Remember to use the rating system to let Robert know if you have received an adequate response. 

 

Robert might not be able to answer each question due to the volume expected during this event. Remember that you can continue the conversation on the  Security sub-community discussion forum shortly after the event. This event lasts through through September 7, 2012. Visit this forum often to view responses to your questions and the questions of other community members.

 
78 Replies 78

nikzad_beh  

You've posted in a thread associated with a 4 year old event.

Please start a new discussion thread for your question.

samnagbankok1
Beginner
Beginner

Hi Robert,

i had receive a lot of mail alert as bellow:

[133:27:2] dcerpc2: Connection-oriented DCE/RPC - Invalid major version [Impact: Potentially Vulnerable] From "10.31.246.51" at Mon Apr  4 02:02:17 2016 UTC [Classification: Pornography was Detected] [Priority: 2] {tcp} 10.32.3.78:6001->10.16.3.30:4260

the RPC server not equal 5 is the version is 2 can i config to fix this alert.

Thank you,

Nathakorn S.

   

You've posted in a thread associated with a 4 year old event.

Please start a new discussion thread for your question.

jmp780718
Beginner
Beginner

Hi.

I have IPS 4240, and i'm seeing the CPU increasing sometimes to 100%, but i have and inspection load of 1%, the IPS has 7.0(5a)E4. this is normal?

Thank you. 

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: