Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
442
Views
0
Helpful
4
Replies

MY threat response dosn't work well!!

a.youssef
Level 1
Level 1

‎12-04-2003 04:52 AM - edited ‎03-09-2019 05:45 AM

i hva an ids 4235(IOS V 4.1); i instaled in server machine Threat response for managing the logs and alarms. i did keep the intiale config of threat response. and for test i activate all icmp sig, but when i ping to my prtected zone. tje alarmes are not whown.

my sniffing interface is plugged in swtich not in a hub. (must i do the merroring or it work witout)

please, i'm waiting

thinks a lot

Labels:
0 Helpful
4 Replies 4

gfullage
Cisco Employee
Cisco Employee

‎12-04-2003 04:21 PM

If the sniffing interface is plugged into a switch then you need to set that switch port up as a SPAN port, otherwise it won't see any of the ping traffic (or any traffic other than broadcasts for that matter).

0 Helpful

a.youssef
Level 1
Level 1
In response to gfullage

‎12-05-2003 02:44 AM

OK, my switch dos not has this port feature, but can use the merroring in setead of SPAN Port?

0 Helpful

intertechusa
Level 1
Level 1
In response to a.youssef

‎12-05-2003 02:43 PM

The idea is to send all traffic you want to monitor to the port that the IDS connected to on the switch. You will have to check with the documentation of your switch. If mirroring does that then yes it will work. What is the make of your switch?

0 Helpful

a.youssef
Level 1
Level 1
In response to intertechusa

‎12-06-2003 05:07 AM

OK, my product is made by planet

0 Helpful
Customers Also Viewed These Support Documents