we are trying to integrate ACS 4.1 and MARS 5.2.
In MARS 5.2 we cannot insert ACS 4.x so we decide to insert our ACS 4.1 like ACS 3.x.
But we are not sure if is working, we simulate a brute force attack against on of our router, we aspected MARS did something, but we only observed an increasing amount of events.
We checked in which way MARS was receiving messages from ACS 4.1. In realtime raw events we saw MARS received ACS 4.1 event like GENERIC EVENT. Is that correct ? Or we should see event type like AAA EVENT, or something like that?
If MARS receive in correct way events form ACS 4.1, this means there isn't any rules to handle this kind of event ?
Thank you really much in advance.
Best regards Antonello Moneta.