We have a small switched network with a series of 29xx switches connected to a "core" 35xx switch.We 'd like to setup an IDS system.Can anyone give me any help on this ? Which product and topoligy could we use ?TIA
When I protect a network(211.167.80.64/26), I open Device Management. Click Devices > Add,add a network protecting in front of the router with the Telnet and enable passwords (211.167.80.69) , I Click Shunning > Add and select srit-sensor-1 , then o...
Hi!Can anybody explain why shared key should be tied to source IP address (inouter IP header), rather than to Identity on cisco routers if Main modeis used and to Identity if Aggressive mode is used ???For example, our peer router uses Identity = hos...
I am having difficulty in getting the tunnel to open on my PIX501 from a test client running v3.5.1Used all sorts of configs from web site - none seem to work.PIX is pingable from internet.
Does anyone have a better method for upgrading config changes on a redundant pair of VPN concentrators? Here's my process.Procedures for upgrading configuration changes on redundant (backup) VPN3030 ConcentratorsStrategy: All changes to the master co...
I would like to know if there is a specific programming language the IDS signatures are written in and if I can learn the programming language. I am a Security Analyst that likes to understand the working of what I am supporting. I will soon be tak...
Hello.I've been monitoring my the syslog messages from my PIX and have noticed the following message appear several times...portmap translation creation failed for udp src inside:xx.xx.xxx.xxx/3902 dst outside:24.169.241.51/53What does this mean?Than...
I notice that from time to time I can't perform a save operation (e.g. "Save Needed") on a VPN3k. The VPN3k returns a message to the effect that the save wasn't possible. I can get around this by deleting some unnecessary log files - quite a tedious...
I can't find any information on the Cisco web sites related to version 2.1(1) of the PDM (Pix Device Manager) that was released today, 9/20/2002.Does anyone have a link for me?Thanks,Richard
Has anyone seen a scenario that Windows 95/98 clients will not connect, then an hour later, CAN connect?? The opposite is also true: 95/98 clients that can't connect, and an hour later can?clear xlateclear arpreloadThese are the ones I know about. ...
Now, I am getting the message "Duplicate first packet detected" in the log on the VPN3015. The client is giving the message "Remote peer is no longer responding"A little help please.Marv
I have notice that if a client get disconnect abnormally (not the users that close)And they are connecting through IPSec over TCP (NAT-T) it takes about 4-5 min before the concentrator close the connection. And the users is listed as active under “mo...
