Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
592
Views
0
Helpful
1
Replies

IDS 4215 IP logging

jmayes
Level 1
Level 1

‎02-19-2005 11:04 AM - edited ‎03-10-2019 01:17 AM

The IDS MC and Cisco's IDS book show configuration for IP packet capture for later viewing through Ethereal.

Question: If I set IP logging on the IDS, how do I retrieve the file for Ethereal analysis?

Labels:
0 Helpful
1 Reply 1

marcabal
Cisco Employee
Cisco Employee

‎02-20-2005 01:12 PM

There are 2 (and possibly 3) ways for retreiving the IP Log file from the sensor.

1) From the CLI

You can use the "iplog-status" command in the sensor's CLI to view the status of the IP Logs and determine the iplog id of the log you are interested in.

You can then use the "copy iplog <ftp://user@host/directory/filename>" to copy that IP Log to an ftp server than you can then access to copy the log to your desktop to run ethereal on.

2) From IDM

Optionally you can view the list of IP Logs within IDM. Within IDM you can then download the IP Log directly to your desktop.

3) From another monitoring tool

I have heard that some monitoring tools are now offering a new menu option for downloading the IP Log from the sensor. I am not sure in which monitoring tools this menu option has been implemented.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card