Cisco IPS anomaly engine

Unanswered Question
May 28th, 2009

hi,

anyone has any sample configurations ? i just look at look at pdf guide and could not understand it.

a few questions too.

1. The IPS signature id 13000 +- is using 'traffic anomaly engine' , it is related to AD settings ? is it correct to say that?

2. How do i link between AD & 'traffic anomaly engine' signatures? if i assume 1. is correct

3. I need to create a 'traffic anomaly' ip rule to alert me if there's a sudden surge of traffic. would this be possible via cisco ips ?

i would appreciate any help as there seems to be limited information about these in cisco website

Thanks!

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion