Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We are using VMS 2.2 and IDSMC 1.2 for management. Some of our Cisco IDS devices are in remote networks which are not directly accessible from VMS hosts. There is a proxy host in between which can listen on a high-TCP-port and port-forward SSH and SS...
When we deploy new IDSM2 blades in various locations, we need to verify that the sensing interface(s) have sufficient visibility into the protected nets. In order to do this, we (security group) rely on network admins to setup SPAN, RSPAN, VACLs, etc...
We are going to have a few IDSM2 blades spread out geographically soon. The security group at my company does not control the Cat 650x switches as such and I'd like to know if there is someway we could get console (modem) access to the IDSM2 blade on...
When I try to configure NTP on my 4215, I get this error (below). I have tried rebooting the sensor but the sensor came back up with no ntpServer configured. There is no connectivity issue between the ntp server and the sensor.sensor(config-Host-tim)...
I'm installing Cisco VMS 2.2 on Solaris and would be using only three applications - IDSMC, PIXMC and Security Monitor. In this setup, would I need RME (Resource manager essentials)? I noticed that in the list of supported devices for RME 3.5, I did ...
Can someone help with this? We have several CiscoIDS sensors and need to pro-actively find out health of the device. Currently, we are using ping to check device up/down status, scripts which check the sensing interface for number of packets seen in ...
Thanks for the information. I have two questions:1. I did generate a falcondump.pcap file but how would I view it? I mean, how to view PCAP format.2. How can I get falcondump to generate a file which tcpdump can parse? I'd like to use tcpdump to view...
Yes, I'm only talking about out-of-band access for the IDSM2 CLI if we loose management for some reason. Your solution works for me - if security admins can get to the IDSM2 CLI when they dial-in and session to the IDMS2, that's great. I understand s...
