Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

PIX IDS "large Ping"

Is it possible to allow large ping replies through the PIX IDS-attack signiture without completely turning the IDS off?

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: PIX IDS "large Ping"

Hi,

Use the "ip audit signature" command to disable this signature

ip audit signature :

Specify which messages to display, attach a global policy to a signature, and disable or exclude a signature from auditing.

I think the signature is 2151 : large ICMP traffic

Hope this helps,

yatin

1 REPLY
Cisco Employee

Re: PIX IDS "large Ping"

Hi,

Use the "ip audit signature" command to disable this signature

ip audit signature :

Specify which messages to display, attach a global policy to a signature, and disable or exclude a signature from auditing.

I think the signature is 2151 : large ICMP traffic

Hope this helps,

yatin

196
Views
0
Helpful
1
Replies
CreatePlease to create content