Folks, I have an IDSM-2 blade in my 6500 running CatOS, i want to monitor all the Vlans in passive mode for right now. Is it better for me to use the SPAN feature or should i use VACL feature?Also cisco doc says that in Inline mode IDSM suppor...
Folks, Does anyone know the procedure to put managerment interface of a IDSM-2 in a VLAN other then Vlan1 which is the default, i would like to create a different vlan for IDSM-2 management and place the management interface if IDSM-2 in it.Th...
HiI am trying to install the CSA MC on a Server running SQL 2000 . I select the "Remote Database" option , create a database, user and File group within the database called analysis as instructed however upon install of he CSAMC I keep getting prompt...
There is only one entry in Windows 2000 add/remove programs for CSA, yet I have two versions installed - 4.0/4.5. Groups/Policies/Kits show all previous versions (4.0.1.540, 4.0.2.627, 4.0.3.720). How can I remove all of these 4.0 versions without ...
Hi,I'm trying to update my 4215 NIDS sig's but am getting the error:Error: Error status returned with status str NotAnyone seen this before? I thought it may have something to do with the CSA 4 to 4.5 upgrade I just did but I still get this error wit...
Looking to montior IM sessions using IDS. Due to the nature of IM and the many ports it can use, is there another method (string match etc) that can be used to monitor this activity? The use of customer signature(s) is ok.
I have to implement the following config:Multicast Source inside -> Pix -> outsideI need to be able to forward multicasts from a transmission source on the inside through the pix outside interface.In earlier version (6.3) I would have done the follow...
we have pix firewall 501 and we have a static ip for internet acess kindly tell me plz how we configure this firewall .what is inside and outside ip and in outside will configure static ip adn in inside ip what we configure.
Anyone know if the PIX firewall would preserve the DSCP field in the IP header as packets moved through it? is it the default behavior or do I need to put in certain commands?Thanks,Tin NguyenCCIE #10820
We have IPS 4240 and 4255 monitoring at least 250 MB traffic. and were planning to buy VMS as management for the 2 devices.I need a suggestion on what VMS server spec that we should have in order for meet our requirements. Hoping for suggestion for y...
I'm having a problem understanding which ports correspond to services supplied by pix ver. 7 on my 515e firewall. Some services either appear to be missing or the service names don't jive with the regitered listing. ...any ideas? thx.
According to the signature 3136.3, The regular expression that looks for netsky.p is \x68\x43\x7a\x65\x31\x57\x6c\x66\x57\x77\x69\x55\x33\x55\x43\x58\x59\x7a\x72\x79\x50\x6e\x4a\x45\x68\x38\x6f\x72\x0d\x0a\x4f\x31When this translated to ASCII it ishC...
