The IEV 4.1 communicates to the end device using RDEP (Remote Data Exchange Protocol).
The only devices supporting RDEP servers are the 4.1 Sensor Appliances and Modules.
So IEV 4.1 can not be used to monitor the IDS alerts being generated by either the Pix Firewalls or IOS Routers.
NOTE: The older 3.1 IEV communicated to the end device using the postoffice protocol.
Version 3.1 Sensor Appliances, and Modules supported the postoffice protocol.
ALSO the IOS Routers with IDS functionality also supported the postoffice protocol, so IEV 3.1 could monitor IOS Routers producing IDS alerts.
BUT the Pix only produces IDS alerts as syslog messages and so can not be monitored by IEV 3.1 or IEV 4.1 (or IEV 4.0).
On the other hand, there is another product Security Monitor (also known as SecMon) that is part of the VPN and Security Management Solution (VMS) that is often mistaken with IEV.
SecMon supports the postoffice protocol, RDEP, and syslog for monitoring the end devices.
So SecMon CAN monitor IDS alerts from a Pix Firewall, IOS Router, and the Sensor Appliances and Modules.
