I have recently hooked up a 4240 and found a lot of internal traffic, producing this alarm. SIG ID 5307.In looking at the packet data it seems to be ligitimate traffic - gmail and others. The NSDB lists no benign triggers. Does anyone have any other ...
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(10) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(87) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(3) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,620) -
Cisco Bugs
(54) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(149) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(40) -
Cisco Secure Firewall Management Center (FMC)
(223) -
Cisco Secure Firewall Threat Defense (FTD)
(275) -
Cisco Security Cloud Control
(16) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(20) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(46) -
Cloud
(1) -
Cloud Provisioning
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(32) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(14) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(264) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(37) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(4) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,579) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
IPv6 Configuration
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(324) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(94) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,589) -
NGIPS
(1,874) -
Online Tools and Resources
(1) -
Open Source and Open Standards
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Automation Analytics Topics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(5) -
Other Firewalls
(1) -
Other IP Telephony
(1) -
Other NAC
(18) -
Other Network
(2) -
Other Network Security Topics
(10,790) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(12) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(21) -
Policy and Access
(2) -
Prioritization
(3) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(9) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(4) -
Security Management
(642) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(5) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(29) -
VPN and AnyConnect
(1) -
Vulnerability Management
(46) -
WAN
(8) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
Please help if you know the solution… may be I updated to 5.x too early. Had few cases then sensor starts to generate thousands of alerts for a single signature all of the sudden. False-positive alerts for sure. The only solution is to disable the si...
Greetings all. Using the CLI (or from the shell) on an IPS v 5.0 sensor, can anyone detail a quick way to generate a listing of all signatures and their corresponding information (sig-id, subsig-id, sig-name, engine name, SigStringInfo, etc…).I unde...
IDS 4250XL launched before the IPS technology, Am I right?Can I deploy an IDS 4250XL as an IPS, if yes, then its true to upgrade this IDS version from 4.1 to IPS ver 5.0Can I add 4 ports of 10/100/1000BaseT on IDS 4250XL.Because, I need to deploy IPS...
...wanted to pose a general question to the forum.If I configure/enable 'produce-verbose-alert' as an event action override (globally), will this cause any peformance issues with an IPS v 5.0 sensor? I understand that there are other variables such a...
Resolved! IDS4255 Memory Technical Details
How much on-board memory by default on IPS4255 appliance.how much maximum memory IPS4255 support ?How many memory sockets are available on IPS4255 on-board
Hi, I have pix 515 with version Cisco PIX Firewall Version 6.3(3)Cisco PIX Device Manager Version 3.0(2)I want to upgrade PDM to Version 3.0.3. how to do it.
I have a CISCO PIX 501 Configured and working fine….All I need is to block these things for my clientsYAHOO MessengerMSN MessengerAnd also I don’t need to give www access ( Internet Browsing ) to few of my users.But all must have access to use their...
Hi all.I have an IDS configured on a PIX515e. Information messages and Alarm messages generated generated from PIX are logged in a Linux box.I appreciate any suggestion about some Linux tool that I can use to parse this log.Tks in advanceGiovanni
I have enabled Blocking on the 4240 and have set the Blocking Device as our Pix 515E. When I look at the Signature Configurations quite a few Signature Actions are set to Produce Alert only. If blocking is enabled do you have to also go and set the S...
Will the IDSM-2 blade work in a 7600 series router? Only documentation I see is that it is supported in the Catalyst 6500
What are advantages using Pix Appliance instead of Cisco IOS Firewall.Thanks,
How do I Setup Linux to receive logging messages from my pix 501. I already have logging configured on the pix firewall. Any suggestions would be appreciated.Joel
Hopefully someone will be able to give me a hand with this issue. Basically I wanna swap my 501 with a 505 I've configured it properly (I think I did). When I plug it in the network I can ping my ISP router, but my servers on the inside cannot access...
I'm trying to use the logging facility to refine an Access List in a test network. At the end of a list of ACE's I have a "permit ip any any log 5"I had the idea that only the flows that had fallen through all of my other rules would reach this last...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 05-07-2026 12:22 PM | ||
| 05-05-2026 09:59 AM | ||
| 05-02-2026 06:09 AM | ||
| 04-30-2026 12:46 AM | ||
| 04-24-2026 07:04 AM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 9 | |
| 2 | |
| 2 | |
| 1 | |
| 1 |
