Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
439
Views
0
Helpful
1
Replies

IDS: Configuring Blocking on PIX

tscislaw_2
Level 1
Level 1

‎01-31-2003 10:11 AM - edited ‎02-20-2020 10:32 PM

I'm looking for help in configuring our IDS 2410 v3.1 to use our PIX for IP Blocking.

IDS will sit and sniff between the outside interface of the PIX and our ISP's router. The management port of the IDS wil be routed thru a switch on the inside network which uses the PIX inside interface as a gateway.

Setup of blocking calls for an IP address of the PIX. Should that be the IP of the outside or inside interface?

I see that on the PIX we are not able to define which interface to use for blocking. So, which interface does the blocking? (perhaps the IP we input above?)

Thanks for any help.

Tony

0 Helpful
1 Reply 1

tscislaw_2
Level 1
Level 1

‎02-04-2003 11:47 AM

Correction....I used the wrong term in describing the command/control port as "management port".

The command/control port is connected to our inside switch.

I'm told by Cisco TAC that I should use the inside if IP address but I'm still confused as to where blocking occurs.

Cisco says inside but what about traffic that's routed to our DMZ interface that never reaches the inside interface? How does that get shunned?

T.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card