Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
475
Views
5
Helpful
3
Replies

Auto-update of IPS rules

tobiaseichner
Level 1
Level 1

‎02-09-2007 01:35 PM - edited ‎03-03-2019 03:41 PM

Is there a way to let IPS automatically update with new rules delivered by Cisco or an other trusted source ?

Labels:
0 Helpful
3 Replies 3

sundar.palaniappan
Level 10
Level 10

‎02-09-2007 07:22 PM

If you are using IPS MC you can setup auto download and application of update files on the sensors. Here's the link that describes the process.

http://www.cisco.com/en/US/products/ps6498/products_user_guide_chapter09186a00806167eb.html#wp989412

HTH

Sundar

tobiaseichner
Level 1
Level 1
In response to sundar.palaniappan

‎02-10-2007 04:55 AM

Sorry, I had better provided more information about the router and software I use: It is a Cisco 1712 with SDM 2.2 installed.

All I currently can do is to add new SDF files, but I guess that this is no auto-updating process running regularly.

Is there any add-on or something similar that works for my case ?

0 Helpful

tobiaseichner
Level 1
Level 1
In response to tobiaseichner

‎02-10-2007 05:29 AM

Here is a screenshot. I have added the attack-drop.sdf file as recommended by Cisco's website. Is there anything more I can do ? I guess this adds just default rules, but does not update them regularly.

And may I ask a follow-up question: Is there a way to let the router notify me by e-mail when an intrusion is detected/prevented ? I see the log file ("Monitor", "Logging"), but can't find a way to get notified.

Preview file
101 KB
0 Helpful
Customers Also Viewed These Support Documents