Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
rhermes
‎07-18-2018
Rising star
Recent Badges
Awards
Recent Badges
See all
100 Helpful Vote
50 Accepted Solution
15 Accepted Solution
1 Accepted Solution
5 Accepted Solution
30 Helpful Vote
300 Helpful Vote
10 Helpful Vote
1 Helpful Vote
50 Replies
Stats
Member since ‎08-19-2003
732
Posts
399
Helpful
88
Solutions

You want to do a VACL capture

Created by in Network Security
04-02-2014
04-02-2014
You want to do a VACL capture on the 6500: http://www.cisco.com/c/en/us/support/docs/lan-switching/v...

It all depends on your Fail

Created by in Network Security
04-02-2014
04-02-2014
It all depends on your Fail Open setting and your security posture.If your primary ASA is set to Fai...

The 5 GigE sensing interfaces

Created by in Network Security
04-02-2014
04-02-2014
The 5 GigE sensing interfaces do have have MAC addresses.In Promiscious Mode, they do not transmit a...

Is it possible for SSM-20 to stream to syslog?

Created by in Network Security
02-03-2014
02-03-2014
No, you can't send events to the ASA.SNMP Traps was the workaround. There is no syslog for signature...

Is it possible for SSM-20 to stream to syslog?

Created by in Network Security
02-03-2014
02-03-2014
None of the Cisco IPS sensors can generate syslog messages for signature events.You can configure an...

ASA IPS Test

Created by in Network Security
02-03-2014
02-03-2014
There is no need to get complex for testing signature detection and if your response actions are pro...

Signature to prohibit delete of files/folders on ftp server

Created by in Network Security
02-03-2014
02-03-2014
It would be possible to create a TCP session signature that would trigger on the string "del" or "rm...

ASA IPS Test

Created by in Network Security
02-03-2014
02-03-2014
Biandov -You are correct, I did neglect to take Promiscuous mode ACL shunning into account when I sa...

ASA IPS Test

Created by in Network Security
01-22-2014
01-22-2014
If your ASA AIP-SSM module is in promiscious mode, then you can't block traffic.The sensor module is...

SNMP Traps on ASA5585-SSP-IPS10

Created by in Network Security
01-06-2014
01-06-2014
You need to do this on a per-signature basis. There is no global "send all my signature events via S...

IPS 7.1 Event Analysis

Created by in Network Security
01-03-2014
01-03-2014
I don't have any experience with Splunk and Cisco IPS, but there is a Wiki for it, so I assume other...

IPS 7.1 Event Analysis

Created by in Network Security
01-02-2014
01-02-2014
Daniel -Your two most common options for getting event data off your sensors are:1. Get/build/buy a ...

Tuning IPS Signatures in an Industrial Network

Created by in Network Security
12-11-2013
12-11-2013
Rene -Enabling all the signatures on your IPS may not be in your best interests. Even with ample sen...

Preventing or stopping attack with no signature or disabled sign

Created by in Network Security
12-11-2013
12-11-2013
Jhun -There are several reasons why a signature may be disabled by default, but usually they are not...

Switch config for Inline Interface Pair

Created by in Network Security
12-05-2013
12-05-2013
Your IPS appliance will bridge the traffic between the two VLANS. Assign your VLAN ports like this:V...
Public Statistics
Date Registered ‎08-19-2003 10:22 PM
Date Last Visited ‎07-18-2018 12:03 AM
Total Messages Posted 732
Total Helpful Votes Received 399
Helpful Votes Given To
Helpful Votes From