Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Microsoft Exchange login attempts and IPS

I have clients running Exchange Server 2003. More than one of them are plagued by (presumably) scripted attempts to log in to their SMTP server, using a long list of common American names.

Please forgive what is undoubtedly a basic question--but can the IPS features in the Cisco PIX 501 be used to fend off an attack like this? And if so, can you point me in the right direction for configuring this feature?

Thanks much,

Zac Mutrux

2 REPLIES
Cisco Employee

Re: Microsoft Exchange login attempts and IPS

Zac,

unfortunately,the ids feature in pix is not advanced enough to locate such attacks.

I would suggest aip-ssm module in asa's or a dedicated ids/ips box to take care of millions of attacks and vulnerabilities ot there.

Regards,

Sushil

Cisco TAC.

Community Member

Re: Microsoft Exchange login attempts and IPS

Well that's too bad, but thanks for your reply just the same.

Zac

404
Views
0
Helpful
2
Replies
CreatePlease to create content