Resolved! IDS PIX shunning
How do i configure the PIX for IP blocking when my IDS detect an anomalous activity? My IDS version is 3.0(1)S4I have a CSPM version 2.3.3i
Network Security
Engage with peers and experts on network security topics such as Secure Firewall Threat Defense, Adaptive Security Appliance, Secure Firewall Management Center, and Security Cloud Control.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Security
- Network Security
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Labels
-
AAA
(8) -
Access Control Server (ACS)
(6) -
Access List
(4) -
ACI
(10) -
Advanced Threats
(1) -
AMP for Endpoints
(1) -
AnyConnect
(3) -
APIs
(1) -
Appliances
(18) -
ASA
(1) -
ASR 1000 Series
(1) -
Branch Router
(2) -
Buying Recommendation
(85) -
Catalyst 2000
(1) -
Catalyst 3000
(2) -
Catalyst 4000
(1) -
Catalyst 6000
(1) -
Catalyst 8000
(1) -
Catalyst 9000
(2) -
Catalyst Switch
(2) -
Catalyst Wireless Controllers
(1) -
Cisco
(1) -
Cisco Adaptive Security Appliance (ASA)
(9,549) -
Cisco Bugs
(34) -
Cisco Cafe
(25) -
Cisco CLI Analyzer
(1) -
Cisco Cloud Services Router
(1) -
Cisco Defense Orchestrator (CDO)
(141) -
Cisco Firepower Device Manager (FDM)
(812) -
Cisco Firepower Management Center (FMC)
(2,909) -
Cisco Firepower Threat Defense (FTD)
(3,164) -
Cisco Press Cafe
(1) -
Cisco Secure Firewall Device Management (FDM)
(12) -
Cisco Secure Firewall Management Center (FMC)
(70) -
Cisco Secure Firewall Threat Defense (FTD)
(95) -
Cisco Security Cloud Control
(2) -
Cisco Security Manager (CSM)
(3) -
Cisco Software
(17) -
CISCO START ANZ
(1) -
Cisco Threat Response
(1) -
Cisco Vulnerability Management
(45) -
Cloud
(1) -
Cloud Security
(3) -
Community Bug or Issue
(1) -
Community Feedback Forum
(31) -
Community Ideas
(18) -
Compliance and Posture
(1) -
Crypto
(1) -
CSC Content with No Valid Community to Post
(1) -
CUBE
(1) -
CUCM
(1) -
Data Center Networking
(1) -
Device Admin
(13) -
EEM Scripting
(1) -
Emergency Responder
(1) -
Endpoint Security
(6) -
Enterprise Agreement
(1) -
Event Analysis
(259) -
FirePOWER
(1) -
Firepower Chassis Manager (FCM)
(2) -
Firepower Device Manager (FDM)
(16) -
Firepower Management Center (FMC)
(408) -
Firepower Threat Defense (FTD)
(221) -
Firewall Migration Tool (FMT)
(28) -
Firewalls
(1,171) -
FMC
(1) -
General
(2) -
Guest
(1) -
Identity Services Engine (ISE)
(9) -
IE3300
(1) -
Integrated Security
(8) -
Integrated Security Architecture
(1) -
Integrations
(3) -
Investigation
(2) -
iOS
(1) -
IPS and IDS
(6,574) -
IPS and IDS1
(1) -
IPS-IDS
(1) -
IPSEC
(1) -
ISE
(1) -
LAN Switching
(7) -
License
(321) -
MPLS
(1) -
Multicloud Defense
(3) -
Network Management
(91) -
Network Security
(2) -
Networking
(1) -
NFVIS
(1) -
NGFW Firewalls
(37,567) -
NGIPS
(1,873) -
Online Tools and Resources
(1) -
Optical Networking
(3) -
Optics
(1) -
Other Collaboration Topics
(1) -
Other Community Feedback
(4) -
Other Firewalls
(1) -
Other NAC
(18) -
Other Network
(1) -
Other Network Security Topics
(10,774) -
Other Networking
(9) -
Other Routers
(9) -
Other Routing
(24) -
Other Routing and Switching topics
(2) -
Other Security
(1) -
Other Security Topics
(18) -
Other Switches
(11) -
Other Switching
(4) -
Other VPN Topics
(1) -
Passive Identity
(1) -
Physical Security
(20) -
Policy and Access
(2) -
Prioritization
(2) -
Remote Access
(2) -
Room Endpoints
(1) -
Routing Protocols
(7) -
SD-WAN Security
(1) -
Secure Network Analytics
(1) -
Security
(3) -
Security Management
(632) -
Segmentation
(3) -
Service Providers
(1) -
Small Business Routers
(4) -
Small Business Security
(2) -
Sourcefire
(2) -
Support
(2) -
Threat Containment
(6) -
Threat Defense
(1) -
Threat Grid
(1) -
Unified Computing System (UCS)
(1) -
Voice Gateways
(1) -
VPN
(24) -
VPN and AnyConnect
(1) -
Vulnerability Management
(43) -
WAN
(7) -
Web Security
(5) -
Webex Teams
(1) -
Wired
(3) -
Wireless Security
(1)
- « Previous
- Next »
Forum Posts
I would like to configure multiple vpngroups on a pix 515 running 6.1(4) code. Clients will be outside PC's running cisco secure client for whatever OS they run. I have configured access for one group already can I get a link to tech article that sho...
Trying to setup a conduit to a statically configured inside,outside address. usingconduit permit udp host (Eternal Address) eq tftp anyI can attach to the internal address and download a file via tftp from the inside ( using a laptop configured with...
Hello.I read about a pix 501k9, which supports 3des encryptionand pix 501k8 which only supports des.What does it mean?Can I also use des with the version which supports 3des (the k9 model) ?I hope yes.Thank you
User Access VerificationPassword:Type help or '?' for a list of available commands.pixfirewall# show config: Saved:PIX Version 6.1(4)nameif ethernet0 outside security0nameif ethernet1 inside security100fixup protocol ftp 21fixup protocol http 80fixup...
Resolved! PIX 501 License
For PIX 501, Cisco offers a Connection-based license: 10 or 100 users. What does this mean (e. g. for a 10 user license):- a maximum of 10 xlates in the nat table?- a maximum of 10 connections in the conn table?If last one is true, one user might est...
I have a 515, running 5.3, with 5 interfaces and have a device connected to the subnet to which one of the lower-rated interfaces (it is rated 50, one beneath it is 30, and outside is 0, and two above it at 50 and 100) is attached. I can ping the lo...
Hi, anybody out there who could spare his/her time explaining, or probablyprovide a link, why was it NOT recommended to use a crossover cable toconnect the two PIX firewalls for a LAN-Based Failover setup?A summary of PROS and CONS is very much appre...
I am using Cisco 1721 and the IOS is 12.2(8) , I need to configure VPN but I can't find any crypto command, what IOS version do I need in order to configure IPsec. Also how can I check whether my IOS configure VPN, IPsec ?Thanks
Hello,I have a Cisco1721 installed running on "c1700-k9o3sy7-mz.122-8.T5.bin" for our VPN-solution. Everything looks fine in the first place, but there are some difficulties i can not solve at the moment.Users which are connected to this router have ...
Can anyone help with this strange problem I'm having withconfigurating VPN on the Cisco. I can connect with the Cisco Clientsuccesfuly, but I can only telnet to the devices which are not inaccess list 101:access-list 101 permit ip 10.3.200.0 0.0.0.2...
Resolved! IDS integration with the PIX Firewall
I am reading the Release Notes for Cisco Intrusion Detection System Sensor Version 3.0(1)S4, and I have stumbled on the new features of this version that it claims Integration with the PIX FirewallHow do you implement this? What kind of integration d...
Hi.How can i implement connection tracking acl on pix firewall?Like cisco ios "access-list permit ip any any gt 1024 established".Thanks.
Hi!Is it possible to change the default TCP SYN timeout from 2 minutes in PIX?Oleg Tipisov,REDCENTER,Moscow
I have two problems around LAN based failover which I would be grateful for help with I have 2 PIX 535s , 1 with full license, 1 failover license. I have upgraded both IIXs to 6.22 and are configured for LAN based failover, which seems (superficiall...
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Unanswered Topics
| Subject | Author | Posted |
|---|---|---|
| 10-16-2025 05:39 AM | ||
| 10-08-2025 02:11 AM | ||
| 09-26-2025 12:33 AM | ||
| 09-24-2025 06:11 PM | ||
| 09-23-2025 04:54 AM |
New solutions
Top Solution Authors
| User | Count |
|---|---|
| 18 | |
| 5 | |
| 3 | |
| 1 | |
| 1 |
