Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We use the WSAv in connector mode and transparent (wccp) to get traffic to the towers for hundreds of customers. We have to have two processes to exclude traffic from towers:1. HTTP - use the Wsa web UI policy (preferred)2. HTTPS - cli ASA firewall a...
Hello,Can CSM 3.3.1 manage IPS 7.0(5)? I am having an issue setting up Global Correlation, where i cannot deploy DNS settings via a shared policy to any 7.0(5) sensors. Deployment goes through, however dns changes do not take affect.Thanks in advance...
I want to share an observation with sig498. We deployed to several 4215's and the update would hang our sensors. We deployed via CSM. In order to recover we had to utilize the service account, log into each sensor and reboot from the bash prompt. Aft...
I am looking for an explanation of the changes made to the sig 1330 with release 248. Many of the Normalizer subsigs did not produce alerts before. Now they do and my sensors are firing a ton of 1330 events. Any Cisco Signature Engineers able to resp...
Hi Zac, Great video. Very informative. I noticed in the admin guide it says that only Basic and NTLMSSP authentication work with WSA Cloud Connector. Do you know why this is? I have configured our wsa as a cloud connector and set to just Kerberos aut...
Ensure dns is configured on the sensor. It will need to communicate to receive updates. also ensure you have a valid license. Sent from Cisco Technical Support iPhone App
See http://forums.cisco.com/eforum/servlet/NetProf?page=netprof&forum=Security&topic=Intrusion%20Prevention%20Systems/IDS&CommCmd=MB%3Fcmd%3Ddisplay_location%26location%3D.1ddd0907
If you are usng VMS you can setup emails within Security Monitor. This is done using a perl script. See this link for details: http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_example09186a00801fc770.shtmlAlso, see this th...
