About t.clark

t.clark · 06-09-2008

A redundant SUP720 module will not come online and I believe the problem is there is not a valid IOS image on the module's disk0:I plan to get a CF card with a valid IOS in that slot and reload the module. To restore this module to be SSO redundant t...

t.clark · 08-29-2007

When the IDSM-2 is in-line does it always perform IP/TCP normalization functions on all traffic (modify/drop/fragment re-assembly) even if I disable all of the normalization signatures?ThanksThomas

t.clark · 08-13-2007

I want to put the ISDM "in-line" between my internet edge router and my firewall (FWSM which is in the same chassis as the IDSM). In order to have traffic flow from the internet edge router into the IDSM, then out of the IDSM to the FWSM, I will need...

t.clark · 08-06-2007

I have IDSM modules in 6513 switches. Is there any way to synchronize the configuration of the IDSM in the primary switch to the IDSM in the secondary switch? In the configuration guide I found a reference to "merging" a backup configuration to a cur...

t.clark · 07-31-2007

I have see a couple of alerts from my IDSM for signature 6005/0 "Unencrypted SSL Traffic." The target ip address is one of my ssl proxy ip addresses (on CSM-S) tcp port 443. An example of the unencrypted traffic sent:GET http://www.yahoo.com/ HTTP/1....

t.clark · 07-09-2008

Do you have any idea when 4.1.x will be released?

t.clark · 09-05-2007

Thanks very much for your time, Ursula. Do you know if the IDSM performs fragment reassembly and tcp normalization even if the signatures in the Normalizer Engine are disabled? In the IDM GUI under Signature Definition > Miscellaneous are "Fragment R...

t.clark · 08-01-2007

The CSM-S sits in front of web servers and acts a 'reverse proxy' for those web servers. This is not a forward proxy for allowing users to access the internet.The IDS is in front of the CSM-S, so the IDS is reporting a client with a connection to myw...

t.clark · 02-07-2007

I saw the same behavior with connectivity to ASA 5540 with Cisco client 4.8. I could login with client but could not connect to anything. 'show crypto ipsec sa' showed my security association with packets decrypted, but none encrypted. A static route...

t.clark · 06-10-2006

I am also curious about the purpose/usefulness of the auto and desirable modes for Etherchannel. What are the advantages over simply using the "ON" mode?

Member Since	‎08-24-2004 02:41 PM
Date Last Visited	‎08-18-2017 03:51 AM
Posts	13

User Statistics

User Activity

Restoring a redundant SUP720

Normalization Engine Signatures

Changing from Promiscuous mode to In-Line mode

Synchronizing config on a second IDSM?

Unencrypted SSL Traffic

Re: Does WAAS really support TFO, DRE and LZC for HTTPS?

Re: Normalization Engine Signatures

Re: Unencrypted SSL Traffic

Re: Cisco vpn client 4.8 connects but cannot send or receive

Re: Etherchannel question