Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,We are monitoring intrusions for a customer using SIEM and we got an alert based on the below IPS logs.It would be great if someone helps clarify my doubts in analyzing this and similar IPS logs.*********** Cisco IDS 08 Oct 2012 08:50:36 id=...
Hi,Need guidance on decoding IPS syslogs(alerts). We monitor IPS logs and there we could see some decoded messages appearing for cid.context.cid:fromTarget, cid.context.cid.fromAttacket, cid.triggerPacket fields. Would like to understand what these f...
Hi,Is that possible to configure read-only access of ASA firewall in ACS 4.2; that too particularly for ASDM? Read-only is working fine for SSH protocol. But the customer requests for read-only access through ASDM.Plz suggest a solution with detailed...
Hi All,Can some one provide a solution for the below requirement?We do have ACS 4.2 appliance managing firewalls of different clients. The users are common i.e, helpdesk administrators. One of the client came up with setting different password policy...
Checking with the users got to know that users were just accessing file servers over 445 port. I am wondering whether the signature will trigger just for normal NetBIOS traffic, nope it wouldn't be, so there should be something that this signature is...
Hi BR,Our configuration is exactly similar like explained in the provided link. It works fine for SSH protocol (managing ASA firewall) but doesnt works with ASDM.It keeps on asking the username & password.-Jags.
