Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
782
Views
0
Helpful
2
Replies

IDS Event viewer add device problem

nataraj_v
Level 1
Level 1

‎01-28-2005 08:58 AM - edited ‎03-10-2019 01:15 AM

Dear All ,

I am nataraj , working as network security engineer .Today only i regesterd. This is my first post.

we have 2 no cisco nids 4235 sensors one is for inbound and other for outbound traffic. while configuring add device in IDS Event Viewer 4.1 .im getting certification problem ,( error mesage is: IOException when try to get certificate. connection refused ) my Event viewer is in 17.16.x.x. and IDS sensor in 192.168.x.x. . we have pix 535 in pix logging im getting 305006 error message regarding this certification problem . pls can anybody show me the way .

thanks in advance.

Nataraj

Labels:
0 Helpful
2 Replies 2

sachinraja
Level 9
Level 9

‎02-01-2005 09:34 PM

Hi Nataraj,

Welcom to Netpro. Am sure you will get instant solutions to all your problems here.

Anyway, why do you want your IDS sensor's management interface to be in a different subnet than that of the IEV/VMS ? Try always to put the mgt interface on the same LAN. Is there a PIX between your IEV and IDS Mgt interface ? If so what all ports have you opened ?

once you have ur ids on the same subnet as 172.16.x.x, u will be able to add it without any problems... do let us know

Raj

0 Helpful

nataraj_v
Level 1
Level 1
In response to sachinraja

‎02-02-2005 05:46 AM

Dear SachinRaja ,

Thank u very much for the response. We have our IDS sensor in DMZ thts why we have different subnets.

static (inside,dmz1) 172.16.0.0 172.16.0.0 netmask 255.255.0.0 0 0

static (dmz1,outside) 10.53.1.44 192.168.10.1 netmask 255.255.255.255 0 0

static (dmz1,outside) 10.53.1.46 192.168.10.2 netmask 255.255.255.255 0 0

access-list out permit ip host 10.0.67.120 host 10.53.1.44

access-list out permit ip host 10.0.67.120 host 10.53.1.46

192.168.10.1 --Location_out sensor

192.168.10.2---Location_in sensor

10.0.67.120 is our VMS server which is away from these locations.

Earlier we used to send all alerts to this VMS server. but now we are configuring such a way that each location having its own IEV . Hence this IEV will be inside LAN i.e, 172.16.x.x. In some locations we are able to install without any problem.

but few locations are giving problem .in all locations we have same configuration regarding inside to DMZ permission.

Thanks in advance. and moreover Thank u very much for ur cordial welcome.

Thanks and Regards

Nataraj

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card