Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

problem on shuning th pix

my IDS is 4.0 with S37+IDM 4.0

my pix is 6.2(2)

When I configure shuning on my pix via telnet on IDM Web page

but it seems can not telnet the pix to do shuning (inside interface)

Why ?

(I have saw the post that pix 6.2(1) can not use telnet

Do I need to upgrade Pix to 6.3 , or upgrade my IDS ??)

7 REPLIES
Cisco Employee

Re: problem on shuning th pix

Shunning with IDS 4.0 and pix 6.2(2) should work.

First, make sure you can telnet from the sensor

command line to the PIX, using the IPand login

information specified in your IDS configuration.

Next, make sure that you have configured IDS

blocking with both a logical device (contains the login

information) and a physical device (contains the IP,

protocol and a reference to the logical device).

New Member

Re: problem on shuning th pix

Thanks for your help

but I can not enter telnet command on the IDS CLI

where is the telnet command ?

Cisco Employee

Re: problem on shuning th pix

The telnet command is available on the sensor command line,

not the CLI. To get to the command line, set up a service

account and log in as a service account user. Then you can

telnet from a bash shell.

New Member

Re: problem on shuning th pix

Hello,

I have IDS 3.1 and PIX 6.2. Is telnet work with configuration. I have tested it and it seems does't work (statut:password sent... ) in IDS manager. I have tried ssh but the statut rest (statut:connecting). from the IDS ssh is working. But shunning doesn't work.

what can i do ?

Thank you.

Cisco Employee

Re: problem on shuning th pix

In order for ssh to work, you must first connect to the pix using ssh from the sensor and accept the key. Then log in and get to enable mode,. If that works , it should work from the sensor.

New Member

Re: problem on shuning th pix

Hello,

Where can i find param of client ssh on IDS to connect to the PIX.

Thanks.

Cisco Employee

Re: problem on shuning th pix

First log into the sensor as user netrangr. Then SSH into the PIX, using the

same username and password that the sensor uses. Note that the current

version of sensor software can only ssh to a PIX with a 3DES encryption

license. If your PIX uses DES encryption, you can obtain an engineering

build of nr.managed from CCO that will allow the sensor to connect.

86
Views
20
Helpful
7
Replies
CreatePlease to create content