do you have a Syslog Server satup? > > From: "Kenny Smith" > Date: 2002/12/12 Thu AM 03:44:10 EST > To: [EMAIL PROTECTED] > Subject: Why PIX's IDS can't detect a port scan? [7:59052] > > Hi.. I implemented IDS in both PIX firewall outside and inside interface, > but when I do a portscan on my PIX firewall's inside interface IP, I can't > see any IDS alarm on my PIX log. Why? Below is my IDS config on my PIX > inside interface. > > ip audit name inside-attack attack action alarm > ip audit name inside-info info action alarm > > ip audit interface inside inside-info > ip audit interface inside inside-attack > > nameif ethernet0 outside security0 > nameif ethernet1 inside security100 > > ************************************************************************ > > Q2) By the way, how to add a new IDS signature to our PIX config? upgrade > the PIX Device Manager? > > > > _________________________________________________________________ > The new MSN 8: smart spam protection and 2 months FREE* > http://join.msn.com/?page=features/junkmail Greg Owens 202-398-2552
Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=59067&t=59052 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
