Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
579
Views
0
Helpful
2
Replies

Maxium events per second of a IDSM2

gpoer
Level 1
Level 1

‎07-19-2005 12:17 PM - edited ‎03-10-2019 01:32 AM

Hello!

We are trying to size a Cisco MARS. Under perfect conditions what is the maxium events that can be generated by an IDSM2?

thanks for the help,

Geoff

Labels:
0 Helpful
2 Replies 2

umedryk
Level 5
Level 5

‎07-25-2005 01:02 PM

This is more subjective to your network and also what you define as suspicious traffic.

0 Helpful

gpoer
Level 1
Level 1
In response to umedryk

‎07-25-2005 02:50 PM

Thanks for the response!

Actually I disagree. Under perfect conditions what is the number that depicts how fast the device can spit out events. As an example, if the devices can monitor 600 megs of traffic, how many events can it analysis before it drops packets.

While, I will give you that with normal traffic that number is dependent on how deep in the packet the signature looks. However, I am looking at perfect conditions, meaning simple signatures that may never leave the 1st 64 bytes of the packet. I want to know what is the maximum number of events I can expect from the device per/sec if every packet matched the most simple signature.

Geoff

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card