Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

OS Fingerprinting Question

I've limited OS mapping and APR to a specific set of IPs (my inside network), but I still see outside IP addresses showing up in the list of learned OS.  is this normal?  I tried clearing out the learned OS list, but am still seeing the outside addresses populating.

I've seen this on 7.03(2)E4 and 7.0(3)E4 and on 3 different units (2 AIP-SSM20s and a 4240).

Thanks.

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: OS Fingerprinting Question

This is expected behavior - the setting restircts the calculation of the Attack Relevenacy Rating to the configured range, not the actual OS identification process.

Scott

3 REPLIES
Cisco Employee

Re: OS Fingerprinting Question

This is expected behavior - the setting restircts the calculation of the Attack Relevenacy Rating to the configured range, not the actual OS identification process.

Scott

New Member

Re: OS Fingerprinting Question

OK, thanks.  The verbage led me to believe it restricted collection of fingerprint data as well.

Cisco Employee

Re: OS Fingerprinting Question

Yes, it is a confusing phrasing within the IDM GUI.

Scott

250
Views
0
Helpful
3
Replies