Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
715
Views
5
Helpful
4
Replies

CISCO IPS_Query

secureIT
Level 4
Level 4

‎08-05-2008 10:02 PM - edited ‎03-10-2019 04:14 AM

Hi Team,

Is that possible to block traffics based on Source and destination in Cisco IPS 4200 series sensor.

IPS is installed in promiscous mode.

regars

Rajesh

Labels:
0 Helpful
4 Replies 4

secureIT
Level 4
Level 4

‎08-06-2008 01:45 AM

Does anyone have answer to my query

0 Helpful

rhermes
Level 7
Level 7
In response to secureIT

‎08-06-2008 08:36 AM

yes, you can "shun" to a cisco firewall (PIX or ASA) or a cisco router. In both cases the IDS sensor will populate an ACL to block your attacker. You need to have some signatures action set to "shun" and of course enter the router/firewall information (IP, username, password) into your sensor.

secureIT
Level 4
Level 4
In response to rhermes

‎08-07-2008 04:00 AM

Could you explain me.

0 Helpful

rhermes
Level 7
Level 7
In response to secureIT

‎08-07-2008 10:10 AM

Here's a good configuration guide to shunning with a 4200 series IPS sensor and a router.

http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_example09186a00801c0e3c.shtml

Here are some other useful IPS config guides:

http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/prod_configuration_examples_list.html

0 Helpful
Review Cisco Networking for a $25 gift card
Top