Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I work for a reseller/MSS. Most of our customers are still running ver 4.1(5). One of our new customers has an NM-CIDS with IPS ver 5.0(2) already loaded. In the past we've just down graded the version. What are the differences in licensing/reg...
Seeing a large amount of false positive alerts on the new signature 5432, Script Embedded in HTTP Header. It seems to be alerting on the word script in any URL, instead of the existance of "</script>" or even the existance of /scripts/w3who.dll. T...
With the VMS problems, did you already confirm that your VMS server is running the correct service pack? It needs service pack 2 for the IPS MC 2.2. I remember reading somewhere about VMS having issues if it didn't have the right service pack. We ...
Samuel, It seems like others are on the right track, but that we aren't fully understanding what you really need to accomplish here. I might not be understanding it either, but I'm going to give it a shot anyway. Traffic is initiated from the outs...
I was testing the same thing, I got it working on the PIX 7.1. I thought the asa code was pretty much the same for this, but I'm not sure. I tested Yahoo 8.0 with and without the PIX commands applied. When the following is applied, it prevents me...
Chris, If the routing check that your doing doesn't fix it, then I recommend checking your translations. Yes it looks right in the configuration, however that doesn't mean that it's built correctly right now. Check it with this:sh xlate detail | g...
I'm still looking for any answer to this same question. This behavior doesn't seem correct since the sig event action filter is processes to subtract the event before the summary event filter. Does anyone know if this is a bug or if Cisco has respo...
