Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I'm reading through rfc 2408 and notice no mention of 'main mode'. Aggressive mode is mentioned as is base mode. I suspect that base mode and main mode are one in the same. Can anyone confirm or point me the direction of main mode? I'm looking for a ...
I'm following Doc 44905...http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_example09186a00801c0e3c.shtmlAnd I can't get blocking (hostShun) to work. The alarm pops but the host is still connected and there are no entries i...
Let’s be real -- the IDS documentation is miserable. It goes on endlessly without stated objectives and many of the screenshots are messed up. Ideally there should be a bunch of field notices that explain specific tasks. For instance, how to connect ...
R5 dials R2.R2 is supposed to authenticate R5 and then callback to R5.So far I see that the problem is the ACS tacacs+ server. Authentication failed...03:52:55: TPLUS: Using server 10.1.1.10003:52:55: TPLUS(00000070)/0/NB_WAIT/65435178: Started 20 se...
Here's the config:aaa new-modelip tacacs source-interface Loopback0tacacs-server host 10.1.1.100tacacs-server directed-requestHere's the debug:R7#test aaa group t U1 cisco new-code Trying to authenticate with Servergroup tacacs+*Mar 1 03:17:17.816: ...
The ports that the PIXs are connected to both need to be SPAN sources. If you are using a Catalyst then use the 'monitor session <#> source interface..." command is what you need. Here's the poorly written config guide..http://www.cisco.com/univercd...
When you configure the IDS from the CLI you type 'setup' and one of the questions asks you if you want to modify the network access list. You need to type yes and identify the IP address of the host you are going to manage the IDS from.
Let's be real -- there is nothing solid on how to implement and manage the IDS on CCO. The IDS is a major PoS. Raj -- you look through the links you posted and tell me you don't see incomplete screen captures and endless documentation that never come...
Found this gem in the PIX doc...http://tinyurl.com/a94fcYou should have two access-list command statement definitions to permit access to the following ports:•DNS, Discard, Echo, Ident, NTP, RPC, SUNRPC, and Talk each require one definition for TCP a...
