Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
900
Views
0
Helpful
3
Replies

PIX IDS Signatures

maraz
Level 1
Level 1

‎09-11-2002 12:35 AM - edited ‎02-20-2020 10:14 PM

Hello,

I would like to know if there is any description of the IDS signatures on the PIX.

I have looked at the dokumentation for PIX but there you have descriptions for all messages except the IDS.

0 Helpful
3 Replies 3

steve.barlow
Level 7
Level 7

‎09-13-2002 04:17 PM

IDS is available only for PIX 6.0 and later. The signatures are contained in syslog messages 400000 through 400051, referred to as the Cisco Secure IDS signature messages.

See link for details on each signature:

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_61/syslog/pixemsgs.htm#xtocid6

0 Helpful

maraz
Level 1
Level 1
In response to steve.barlow

‎09-16-2002 01:12 AM

Hello, Steve!

Yes I have read that document. But the IDS-messages have no "explanation" and no "action" as the other messages have. So my question is were I can find information where the are an explanation and a recommended action.

Best Regards

Robert Maras

0 Helpful

steve.barlow
Level 7
Level 7
In response to maraz

‎09-16-2002 12:01 PM

I can't find a link on the web site, but they are the same as those in the IDS, ie the NSDB (network security database). In the cisco press book, Chapter 10 IDSPM, it lists all IDS signatures. So you can look in the book or in CSPM in the NSDB. For example a UDP bomb will be explained and will list a recommended action, deny or log, and you can have the PIX do the same.

Hope it helps.

Steve

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card