Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
323
Views
0
Helpful
1
Replies

SECMON 2.1 and IPS 5.0

mkirbyii
Level 1
Level 1

‎08-16-2005 09:01 AM - edited ‎03-10-2019 01:35 AM

When an event shows up in the event viewer the details pane to the right has all the details of the event. One of the sections is "Response" it lists "IP Logged: True/false" etc. If I have a sig with an action of "deny packet inline" shouldnt I see something in the "response" section? I guess I thought I would have a way of knowing what action the sensor took for the sig. Is there a way within the event viewer to know what action the sensor took?

Labels:
0 Helpful
1 Reply 1

umedryk
Level 5
Level 5

‎08-24-2005 06:37 AM

It is the response that you would like your IDS box to perform. It can shut the host, drop the tcp connection etc.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card