Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
745
Views
0
Helpful
2
Replies

blocking facebook in IDSM-2

Shaikh Aman Uddin
Level 1
Level 1

‎07-15-2011 09:00 AM - edited ‎03-10-2019 05:24 AM

Hi,

I hv IDSM-2 installed in promiscuous mode in 6509 Switch, it is triggering signatures and working perfeclty. But when I use the internet using my Bluecoat proxy server (proxy server ip address in client's PC)  for internet website (like:www.facebook.com), it is unable to block this site. Since it is blocking the facebook website without Bluecoat Proxy Server fine. Kindly add your valuable suggestion/solution.

I collected few captures from Client PC, IDSM (all interfaces, including Dataport & System interfaces) are attached.

Aman

Labels:
103255-captures.zip
0 Helpful
2 Replies 2

rhermes
Level 7
Level 7

‎07-15-2011 12:40 PM

Are you TRYING to block facebook with your IDSM?

Do you have shunning configured on your IDSM? If you do what is the IDSM shunning to? A Cisco router or the host 6500/7600?

A promisicous mode sensor without shunning should be be able to block anything.

- Bob

0 Helpful

Shaikh Aman Uddin
Level 1
Level 1
In response to rhermes

‎07-16-2011 11:43 PM

Hi Bob,

Acutally, shunning is not confirgured on IPS, since I want to stop only specific type of traffic (facebook), if I do config shunning then it will block all http type of traffic.

Without Bluecoat proxy server, IDSM-2 is blocking perfectly.

Kindly advise

Aman

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card