Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,I try to send specific traffic (with ACL) to a separate sensor in the aip-ssm.When I check the counters of the vs on the module, there is no traffic inspected.My config looks like the following:ACL:access-list ips_dmz permit ip any host x.x.x.xacc...
Hello there,I'm trying to establish a connection into the internet over a Remote Access VPN Tunnel.The VPN-Client connects to Cisco PIX via IPSec-Tunnel and then connects to any web-server on the internet over the IPSec Tunnel.This Connection is neve...
Hi,maybe it's just a speed or duplex mismatch between ASA and switch or linux box if it's direct attached.Check the interface counters (errors and collisions) on the ASACLI:sh interface xxx
Hi,I think the csc module supports your desired features.Seehttp://www.cisco.com/en/US/prod/collateral/vpndevc/ps6032/ps6094/ps6120/ps6823/product_data_sheet0900aecd80402e4f_ps6120_Products_Data_Sheet.htmlConfiguration with third-party tool (websense...
It's not possible to write IPS Eventlogs to a separate file.You can send the IPS-Events over snmp-traps to a management station (configure "Enable detailed traps for alerts" to see detailed informations)
Create a class-map to identify traffic:access-list monitor-acl extended permit ip any 172.16.0.0 255.255.0.0 log class-map IPS_TRAFFIC match access-list monitor-aclCreate Policy-Map to define what should happen with the traffic:policy-map IPS_POLICY ...
