02-09-2007 01:35 PM - edited 03-03-2019 03:41 PM
Is there a way to let IPS automatically update with new rules delivered by Cisco or an other trusted source ?
02-09-2007 07:22 PM
If you are using IPS MC you can setup auto download and application of update files on the sensors. Here's the link that describes the process.
http://www.cisco.com/en/US/products/ps6498/products_user_guide_chapter09186a00806167eb.html#wp989412
HTH
Sundar
02-10-2007 04:55 AM
Sorry, I had better provided more information about the router and software I use: It is a Cisco 1712 with SDM 2.2 installed.
All I currently can do is to add new SDF files, but I guess that this is no auto-updating process running regularly.
Is there any add-on or something similar that works for my case ?
02-10-2007 05:29 AM
Here is a screenshot. I have added the attack-drop.sdf file as recommended by Cisco's website. Is there anything more I can do ? I guess this adds just default rules, but does not update them regularly.
And may I ask a follow-up question: Is there a way to let the router notify me by e-mail when an intrusion is detected/prevented ? I see the log file ("Monitor", "Logging"), but can't find a way to get notified.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide