I am wondering if the OpenSSH vulnerability affects IDS sensors configured to use SSH for remote connections?I saw the notification from PSIRT and did not see any mention of the IDS sensors one way or the other.Regards,Chad Giulini
We need to see the internal IPs of our remote access users. Currently, our VPN Concentrator 3000 gives out addresses from an address pool. Groups are not configured to give addresses. (We use an RSA server for authentication, and all remote users emp...
Where or how do I find this version of the IEV? I have the IDS update but cannot find the 4.0 IEV. Do I need to use the VMS instead? Any assistance is welcome.
Hi,http://cco.cisco.com/cgi-bin/tablebuild.pl/mgmt-ctr-idsIs returning a blank page for me. Also, the PIX section and any other section for that matter seems busted. This has been going on for a day now. Does anyone plan on fixing this?Cheers,Ben
I have recently looked at a firewall topology where there were 2 frewalls connected back to back in a serial fashion. the configuration was as follows: the LAN was connected to a router which performed all the NAT operations, that router was connecte...
There are 2 patches : 108993-25 and 108528-23 which CiscoWorks (VMS 2.2) asks for upon installaion which arent in any of the install_clusters (Solaris 8 and J2SE Clusters). Are those 2 patches compatible with CiscoWorks? After originally installing...
Hi,I have this utilzation on PIX 535:CPU utilization for 5 seconds = 94%; 1 minute: 94%; 5 minutes: 93%Where may be a reason this high utilization CPU?Thanks. Peter
I tried to re-enable "interface group 0" via CLI and web based IDS Device Manager. But I have no success. When I issue the command, it seems like the IDS just lockup. I could no longer re-login to the IDS Device Manager. Also when I issue the com...
Hi, If the IP network segment of remote access VPN client conflicted with VPN3000`s private interface IP network segment, can I still let the remote access VPN client to access the servers at VPN3000`s private network?Best Regards,Jackson Ku
Hi,Please help me out to understand signature 5366, I am getting a lot of alert for this signature id, how can i know whether the machine from which i am getting this alert is really infected or is it just a false positive.Thanks and RegardsSalim
I have a customer that I am implementing IDS's to monitor several parts of their network and I am running into a small design problem.The customer has a network that is highly redundant. Example of this is causing a problem of how to or where to pla...
Hi, Using a PIX-515e running 6.3(3) and PDM 3.0.1and I need to do "Policy NAT".I've configured this using the telnet command line,but now when I attempt to run PDM it complainsabout Policy NAT not being supported, etc, etc.Is support for this func...
I have a rule using CSPM to block port 135 and 4444 on the outside. The rule is the first one after the system generated rules. Yet it appears on the PIX with several policies below the rule. In order to deny these ports should the rule be just befo...
