Hi...my customer has an enquiry about implementing a IDS solution in his office. There is about 60 users in his office and they using 256K leased line to access internet and send/receive e-mail. Now they don't have firewall and they are using IP IOS in their 2651 router.
In this case, how can I propose a suitable IDS for them ??
What are the difference between they use IOS with FW/IDS and Cisco IDS Network Sensor ??
The IDS module for switches or IDS on the PIX uses a subset of signatures to do it's job.
Not having a module myself I don't know exactly, but the signatures relate more to router/network device traffic rather than Windows networking, CGIs etc.
The 4230/4210 IDS sensor appliances are identical in the sense that they implement the full IDS capability offered by Cisco. The appliances however are constructed for different network data rates. The 4230 claims to handle up to 100MBps.
For your environment, I would suggest the 4210 sensor appliance. If you've got money go for it, ($15k for your solution), otherwise use Snort :)
IDS-42xx Appliances - Full signature set with signatures updates on average every 2 weeks
IDS-4210 - 45Mpbs
IDS-4230 - 100Mbps
IDSM - IDS Module for the Catalyst 6000 - WS-x6381-IDS - Full signature set with signature updates coming out less often than the appliance, the IDSM is usually 1 to 2 signature versions behind the appliance
IDSM - 120 Mbps approx.
The IDSM for the Cat 6K differs from the IDS Functionality in the IOS Firweall Feature set.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...