Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

TCP reset

I am unable to configure the TCP Reset on my IPS 4255 in Promiscous mode.

I have declare one interface of 0/0 IPS as tcp reset, for interface gig 0/1.

but still not working. Please tell me how to configure and how to verify the configuration.

1 ACCEPTED SOLUTION

Accepted Solutions

Re: TCP reset

Make a custom STRING TCP signature direction 'to server' for Telnet (Port 23). Match on any string like 'abcd'. Now telnet on the SPANNED vlan, and then try to type abcd. as soon as you type 'd' (the last letter) your telnet connection will get stuck :)

Regards

Farrukh

5 REPLIES

Re: TCP reset

Did you add the ingress keyword on the switch? Can you post your SPAN configs?

Regards

Farrukh

New Member

Re: TCP reset

Please see the span configuraiton,

monitor session 1 source interface Gi1/0/1

monitor session 1 destination interface Gi1/0/5

now when i try to give the ingress keyword it gave me error of incomplete command error.

dot1q ingress forwarding using dot1q encapsulation

isl ingress forwarding using isl encapsulation

untagged ingress forwarding using untagged encapsulation

vlan Set default VLAN for untagged ingress traffic

I have only one VLN 1 and 13 as native VLAN on my switch.

All switch ports are member of VLAN 1.

Switch is trunk with other switch

PDC-OUT-3750-1#sh interfaces trun

PDC-OUT-3750-1#sh interfaces trunk

Port Mode Encapsulation Status Native vlan

Po1 on 802.1q trunking 13

Port Vlans allowed on trunk

Po1 1-4094

Port Vlans allowed and active in management domain

Po1 1,13

Port Vlans in spanning tree forwarding state and not pruned

Please let me know which option to select after ingress.

I will be very greatful to you.

Re: TCP reset

ingress vlan 1

Regards

Farrukh

New Member

Re: TCP reset

Thanks for the reply, but please let me know how the verify that the tcp reset is working. I have signature that has action configured to rest tcp connection.

but how can i verify that tcp rest is working.

Re: TCP reset

Make a custom STRING TCP signature direction 'to server' for Telnet (Port 23). Match on any string like 'abcd'. Now telnet on the SPANNED vlan, and then try to type abcd. as soon as you type 'd' (the last letter) your telnet connection will get stuck :)

Regards

Farrukh

339
Views
4
Helpful
5
Replies