Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

blocking at 6509

I have a sensor that I want to monitor my inside network and shun/block at the core switch. I am running hsrp between two 6509s with .1 as virtual and 2. and .3 as actual ip on Vlan 3. I created a custom string called testattack port 23 and set it to block. I created a virtual and blocking agent (on Sensor) for the 6509 on .2 of vlan 3. When I excute the attack on a device I see the attack on the IEV and the ids logging onto the 6509 but my PC does not get blocked and no dynamic ACL on vlan 3. I have tried to get help from Cisco butthey are clueless. Help please.

1 REPLY
New Member

Re: blocking at 6509

This could be the access list mis configured.

107
Views
0
Helpful
1
Replies
CreatePlease to create content