Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi All,We are running cisco ips ver 7.0(4)E4 ips-4260-k9, we have around 10 sensors, when i try connecting to one of the sensor using ssh, after entering the username and password, i don't get the below prompt (other sensors don't have this problem)<...
Hi All, Is there a way to know the list of all the signatures that the ips has triggered for the last 24 hrs.......i need just the signature id that the ips has triggered for the last 24 hrs......is there a way to know that?....any suggesti...
Hi All, We have a tool that would pull the netflow logs and display the output in a text file, is there a gui tool that can be used to view the output from the text file, the tool should also be able to do sorting.....any sugesstions would b...
Hi All, I would like to get logs from ACNS box into my desktop......i can see the log file in this path "/local1/logs", but i'm not sure how to download those logs to my desktop?....any suggestion would be helpful.Thanks
Hi All, I have 10 new IPS devices, i have to do the coniguration on all the 10 devices, the configuration on all the 10 devices wil be same........Is there an easy way to configure multiple devices at the same time (is there any script that ...
Hi Scott, we have around 15 cisco ips devices running IPS 7.0(4)E4, sometimes the "analysis engine" of some of the sensors stops running (i.e anlaysis engine NOT running)......what is the cause of this? and what are the steps or soluti...
Hi Scott, Thanks a lot for your help....i had another question, in the service http engine if i specify "uri regex" and "header regex".....will the signature trigger only when it matches both uri and header regex or will it trigger ...
Hi Scott, I am new to ips and i want to write some custom signatures, i was looking for some beginner (easy to understand) document which can tell more about the signature engine and regex?.........is there any reading material or docume...
Hi, Thanks a lot this was really helpful.........i can see some of the log file in this directory "/local1/logs", is there a way to download the log files to my machine?.....and also is there a easy way to find (like grep in unix) out the log en...
Thanks a lot that was really helpful, just had another question if 495 event action filters is corrupting rules0.xml then i assume that the IPS will not function properly, In that case what is the work around? and if more filters need to be added, ho...
