Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1075
Views
0
Helpful
3
Replies

My IDS stopped sending alerts to VMS

keith.kichline
Level 1
Level 1

‎12-21-2004 01:42 PM - edited ‎03-10-2019 01:12 AM

I have an IDS running 4.1.4 S131. It has working few about two months now, but all of a sudden I stopped getting alerts. I clear my events thinking that it reached it's maximum, but still no alerts. if anyone can help I'd really appriciate it.

Thanks

Labels:
0 Helpful
3 Replies 3

nkhawaja
Cisco Employee
Cisco Employee

‎12-23-2004 04:49 PM

you need to separate this issue

1- IDS seeing alerts or not

2- Alerts coming into security monitor or not

for 1

login to IDS and type

"show event alert past 4:00"

see if you got any alerts in say past 4 hours. if you are getting alerts, and those same alerts are not appearing on security monitor. then the most posssible cause is DB corruption. DB size may have grown up too large to handle.

if that is the case, you can try to do a few DB tunning , but most probably you will end up in reinstall of security monitor.

here is the link for DB tunning.

http://www.cisco.com/univercd/cc/td/doc/product/rtrmgmt/cw2000/mon_sec/secmon20/ug/dbrules.htm

thanks

Nadeem

0 Helpful

keith.kichline
Level 1
Level 1
In response to nkhawaja

‎12-23-2004 04:54 PM

Thanks, i think I got it fixed. It seemed to be stuck in one of it's processes. i saved and reset and that seemed to do the trick.

Thanks for the link!

0 Helpful

jkanyua
Level 1
Level 1

‎12-26-2004 08:14 AM

links work

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card