Syslog support for IPS SSM 10

Unanswered Question
Feb 10th, 2009

Hi,

I am new to IPS SSM 10. i've few questions:

1.Do we have any kind of syslogs logs for IPS SSM 10? basically i want to know what kind of attacks, intrusion & DoS has happened.

2.Can we update the Signature automatically thru Cisco site?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Anonymous (not verified) Mon, 02/16/2009 - 16:12

The AIP-SSM does not support syslog as an alert format.

The default method to receive alert information from the AIP-SSM is through Security Device Event Exchange (SDEE). Another option is to configure individual signatures in order to generate a SNMP trap as an action to take when they are triggered.

Actions

This Discussion