Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We have three new centers that we cycle our web presence through. For some reason, I am getting anywhere between 30,000 to 50,000 half-open sig events, each from the External and DMZ sensors, when one of those centers are active. However, on the prev...
We have approximately 63 sensors (IDS 4235's all running v4.1)) on our management network that monitor our network. We use the CiscoWorks Management Center to push our sig updates. We usually:1. load the ZIP file for the updates in the proper directo...
We have a test lab set up where we beta all our configs. I am in the process of testing v5 on a 4235 IDS sensor and am prepping to test the new version of CiscoWorks and Protego. ALl of our equipment is connected from the serial console port to a Dig...
I haven't usually had much success upgrading via cd-rom. I've always done FTP. Not that it helps you much here, but the three times I've tried to do that via CD on our 200s, I can't ever get it to work. Maybe we're both doing something wrong.
I can't speak for the CatOS on switches and routers, but for PIX firewalls, it gives us interface bandwidth utilization, memory utilization, and process utilization. I would expect the same to be done for the routers and switches, but take my comment...
It would depends on how many devices you have. As a comparison, so you have some numbers, we have:~80 Cisco 4235 IDS sensors~70 Pix 525/535 Firewalls (11 clusters in Europe)~3 Checkpoint Firewalls~12 Cisco 3000 VPN ConcentratorsAll of these are sprea...
We have two PN-200's in our infrastructure, with approximately ~80 4235's IDSs pointed at them, ~70 PIX 525/535's, 3 Checkpoints, and 12 VPN 3000 concentrators. We were running 3.4.4 with only a few minor problems, but updated one of our test boxes t...
We may have found the culprit. It seems our load balanced servers, at least the software application they use to balance them, may be dropping the incoming SYNs and not responding to the original hosts. So everything is working as intended...amazingl...
