Getting log data out of IPS 4240

Unanswered Question
May 6th, 2008

We installed an IPS 4240 on our Customers Network a few months ago. We had great expectations for it during the installation, thinking that it would be alerting us to potentially suspicious activity any time any potential intruder tried to do anything suspicious on our network.

We can see where to device is useful with respect to seeing bogus signatures and then logging some data (capturing frames) in its IP Logging Feature.

It is also useful in its "Events" tab as one can drill down to specific time periods...

But what I really want is for it to:

1) Send syslog data to our Log Collection host, and 2) Send Alerts when these suspicious activities are detected so that an IT Admin knows what is going on and can react to them...

Is there a way to configure this?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
mchin345 Mon, 05/12/2008 - 09:02

review the sensor config, interface setup, running config etc.


This Discussion