how to monitoring IPS event logs !

Answered Question
May 22nd, 2010
User Badges:

Hi ,


We have Some Cisco IPS and also juniper IDP sensors in our networks ,with juniper i use NSM for analyzing network logs,attacks,generating different kind of graphs and stuff like that,its so easy to work with and also its informative, but with cisco IPS devices i dont know what tools are available for online monitoring network logs, attacks and also generating graphs for my boss .I see IDM but it doesn't have the features that we need ,does any one know anything else for analyzing and monitoring logs ?


Warm regards,

Omid

Correct Answer by Jennifer Halim about 7 years 1 month ago

IME (IPS Manager Express) provides more information and reporting tool than IDM, and it can support up to 10 IPS devices/modules.


Here is the URL for IME for your reference:

http://www.cisco.com/en/US/products/ps9610/index.html


Please check the system requirement for IME on the following release notes:

http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5729/ps5715/ps9610/data_sheet_c78-459033.html


Hope that helps.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Jennifer Halim Sun, 05/23/2010 - 00:41
User Badges:
  • Cisco Employee,

IME (IPS Manager Express) provides more information and reporting tool than IDM, and it can support up to 10 IPS devices/modules.


Here is the URL for IME for your reference:

http://www.cisco.com/en/US/products/ps9610/index.html


Please check the system requirement for IME on the following release notes:

http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5729/ps5715/ps9610/data_sheet_c78-459033.html


Hope that helps.

Omid Almasieh Sun, 05/23/2010 - 22:43
User Badges:

Hi halijenn ,


Tnx for your great help , is IME included in Cisco IPS CDs ?it seems that I can use IME free of charge !!


Regards

Omid

Jennifer Halim Sun, 05/23/2010 - 22:51
User Badges:
  • Cisco Employee,

You are absolutely correct. IME is free.


When you https to the IPS via browser, it will give you option to download the IME.


Alternatively, you can download it from here:

http://tools.cisco.com/support/downloads/go/Redirect.x?mdfid=282052550


Version 7.0.3 is the latest version, and here is the readme on the system requirement:

http://www.cisco.com/web/software/282829584/33737/IME-7.0.3.readme.txt

Actions

This Discussion