You can set packet capture or ip logging on any signature. If you connect to the IDS via the IDM interface you can navigate to the signature configuration mode which is nested under configuration - sensor engine - signature configuration mode - all ...
Nataraj,to start learning the techniques of analysis I would suggest the book "Intrusion Detection" from New Riders Press. This book is written by one of the leading analysts in the field, and a member of the SANS organization. If your really in a ...
I have identified a trend between multiple traces that are triggering the 3334 signature. It appears that RPC traffic to Lexmark printers are triggering this signature and creating false positives. If this is the case on your network you will be abl...