Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1002
Views
0
Helpful
1
Replies

Tuning Phase

bklawson
Level 1
Level 1

‎12-31-2004 10:45 AM - edited ‎03-10-2019 01:13 AM

Couple general questions.

I am about 3 weeks into the tuning phase on my 4250XL sensor. We are monitoring the Email DMZ as well as the General Population network.

Are there any specific sig that are not on by "default" that any of you would recommend, I should turn on for these networks?

With relation to the IDS/IPS image for the 4250XL... does anyone know when it will be available? And what is your opinion of having a 2800 (www router) doing some IPS vs. adding another IPS appliance to the network to drop all the viruses and other unwanted traffic?

Thanks for you time.

Labels:
0 Helpful
1 Reply 1

marcabal
Cisco Employee
Cisco Employee

‎01-05-2005 09:59 AM

The release date for IPS v5.0 has not officially

been announced yet.

The main difference between the 2800 router with IPS functionality and a IDS Appliances (loaded with the IPS v5.0 software when available) is the number of variety of signatures that can be detected and prevented.

With the IPS v5.0 software on the Appliances both the Appliance and Router would be able to drop the packets causing the attacks. The differene is that the Router has limited memmory and can only support a smaller number of signatures that can be supported on the Appliance. In addition, not all of the signature engines have been ported to work in the Routers, while all signature engines will work in the Appliance allowing for detection of many different types of attacks.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card