Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
247
Views
0
Helpful
2
Replies

One Sensor shunning two Routers

d.beppu
Level 1
Level 1

‎07-26-2002 04:07 AM - edited ‎03-08-2019 11:42 PM

Hello,

We are planning to make ISP connection redundant.

We wil have two routers for the Internet access.

Question 1:

Can one sensor shun two routers at a time, and how to do it ?

Have we only to add the two lines in managed.conf as follows ?

NetDevice ROUTER1_IP Cisco ROUTER1_PASSWORD

ROUTER1_ENABLE_PASSWORD

NetDevice ROUTER2_IP Cisco ROUTER2_PASSWORD

ROUTER2_ENABLE_PASSWORD

Q2:

What kind of CIsco routers and version of IOS can IDS Sensor

shun ?

Thank you.

Daiichiro Beppu

NTT DATA SECURITY

Japan

Labels:
0 Helpful
2 Replies 2

yusuff
Cisco Employee
Cisco Employee

‎07-29-2002 05:37 AM

Yes, you can configure IDS to shun two routers.

Any version on Cisco router should do. IDS is not IOS version dependant.

HTH

R/Yusuf

0 Helpful

stleary
Cisco Employee
Cisco Employee
In response to yusuff

‎07-29-2002 08:05 AM

The only IDS restrictions on IOS versions are that the version should

be Y2K compliant and it should support named ACLs. Any Cisco router

running IOS version 11.2 or greater will work with IDS.

If you update managed.conf to support more than one

router, you will need to add 1 NetDevice entry for the router and at

least 1 ShunInterfaceCisco entry for the interface(s) the sensor will

be shunning on.

0 Helpful
Customers Also Viewed These Support Documents