Is there a particular software revision I will need on my Cisco 3620's and 3640's in order to get them to function with the IDS 4210? Or does the IDS do all that for me? I haven't tarted the IDS up yet so I am new to this.
Just about any IOS version you can sucessfully run on the 3620's and 3640's should be able to perform the shunning capability. The 4210 will telnet or ssh into your router and CLI configure a temporary ACL to shun each attacker (IP or port) for each signature that fires that you have set the action to "shun".
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...