On an IDS sensor, using command line, how do we find out what kind of a box are we on? I can find out the OS, but the hardware model of the appliance?
Also, does the event virewer and IDS sensor forget each other after a period of inactivity. I find that if the Post Office Protocol is down for a period of time, they lose each others configuration. Do they rediscover each other automatically?
With the release of CIDS 4.0, you can use the CLI "show version' command to identify the model. There is no similar command in earlier versions of the software.
The IEV and Sensor connection should remain active as long as there is a network connection. Should there be a network disruption, the devices automatically reconnect after the network connection is restored.
I expected the devices to rediscover after the network comes up, but they do not. In this case the network disruption was for a few hours 6-7 hours. Is there a parameter to be tuned (like history or something) which will make them keep their configs even after prolonged disconnections.
In IEV3.1, the postoffice is supposed to automatically reconnect to the sensor when the network is up again. If not, can you open the Device Status window ( right click the device name and choose "Device Status" menu) and let us know the information inside that window?
Besides, since postoffice didn't auto connect to sensor after the network disruption, did you try to remove the device from IEV and then add it again to make them communicate? or some other mechanism you use?
When I tried to add the device after removing it, there was no problem reconnecting. Otherewise it does not estrablish communication automatically. The status is something like, 'syn sent and but none received'.
Ya, I can ping both ways.nrconns shows a blank line without any status indication, whereas I was expecting an 'established' status. nrstatus shows all the services are running. Log files show that packet capture is happening.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...