The follow captured packet is said to have caused the signature called “XML-RPC PHP Command Execution” (SIGID: 3254 SubSig: 0) to trigger..~...........E..$..@.=....C....'O....QxE..+.UP....j....<?xml version="1.0"?>..<methodCall>..<methodName>test.met...
I need to configure a remote access VPN on a Cisco PIX and allow the Cisco VPN clients using that pool to use another site to site vpn on the same PIX. Is this possible on ver 6.3. I know the vpn Concentrator can do it but what about the PIX. any tho...
Dear All,In fine tunning the IDSM/IDS for false positive alarms, I have configured the IDS/IDSM for "Event Filter" the false alarms and at the same time I have conmfigured my IDS/IDSm fo shunning/Blocking various networking devices (PIX/Router...
I found this particular configuration regarding redundant routing using VPN Concentrators. I am looking for a redundant solution for VPN LAN-LAN tunnels. http://www.cisco.com/warp/public/471/vrrp_config.htmlDoes anyone know if this configuration is ...
Well, it's over 72 hours now and still no zip files posted to ward off the Zotob worm. That's really something coming from a company that hypes up their security solutions. I would've liked to have these last Wednesday morning at the latest - prefe...
My company recently purchased a PIX 506 for our 3 Mbit/768 Kbit Internet DSL line. This has worked great except for mail which is outsourced. Some users have an Outlook error pop up that they can't connect to the Exchange server. Is there anyway on a...
I need someone's expertise in helping me resolve this error message. I have looked up the error message and need assistance in resolving this issue. My PIX 515 hangs from time to time and cannot be accessed from inside - only from outside. This error...
I have several already deployed 2811 that I'd like to turn on the IPS feature. IOS firewall is already running. We also have just deployed VMS. Is there any order that need to be followed to get these into VMS. Should I import them into Router MC or ...
Anybody know where I can download the fcs-IPSMDC-v2.1-w2k-readme.exe?The site http://www.cisco.com/cgi-bin/tablebuild.pl/mgmt-ctr-ids-app only view the fcs-IPSMDC-v2.1-w2k-readme.pdf file and no *.exe file. I am to upgrade my VMS to support IPS..Hope...
I have a time issue between a 4240 sensor (5.0) and Security Monitor (2.1). The events in the sensor are correct but 7 hours off in Security Monitor, even though the VMS server understands the correct time (knows there are events in the last hour) bu...
Hi I configured IDSM2 and is working fine except it is showing wrong time.The MSFC shows the correct time.How should I set the right time on IDSM2.Sanjay
I have been given the task to analyze daily our PIX 515E log for signs of intrusion or "unusual" activity. We currnetly use Security Monitor and I also send the logs directly to by PC using Kiwi Syslog.I know that each installation is different but I...
