RE: Cisco IDS

Fei Yang Thu, 11 Apr 2002 11:39:19 -0700
I'm not sure about CAT 5500. On CAT2950, I can map traffic on more than one interfaces 
to the monitoring port.  According to Cisco's document, the monitored ports should 
stay in the same VLAN as the monitoring port.

I didn't configure the trunk link port, which handles multiple VLANs traffic, as the 
monitored port before. 

Sorry for others, this is not a security topic.
Fei.

-----Original Message-----
From: Pieter Blaauw [mailto:[EMAIL PROTECTED]]
Sent: Thursday, April 11, 2002 2:42 PM
To: [EMAIL PROTECTED]
Subject: RE: Cisco IDS


A note of advice.

We tried to use Cisco's IDS on a CAT 5500, and once you enable more than one spanning 
tree port to get all data from separate VLAN's the switch crashed. Seems the Cisco 
hardware could not handle more than one spanning tree port per switch. Just some 
useless info anyway :)

Cheers
Pieter

-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf 
Of Chris Kirschke
Sent: Thursday, April 11, 2002 8:20 PM
To: Fei Yang; [EMAIL PROTECTED]
Subject: RE: Cisco IDS


yes...

Chris Kirschke
Lead Engineer
Astreya Partners, Inc
[EMAIL PROTECTED]
408-790-5900 xt 531


-----Original Message-----
From: Fei Yang [mailto:[EMAIL PROTECTED]]
Sent: Thursday, April 11, 2002 10:51 AM
To: [EMAIL PROTECTED]
Subject: Cisco IDS


Hello,
 
I am installing a Cisco IDS. The monitoring port is in the same VLAN as the Internet 
access router and PIX ourside interface. Do I need to configure SPAN on the switch so 
all packets going through PIX outside interface will be mapping to IDS's interace?
 
Thanks,
Fei.
*if)+*iXi⁳
v뙨+w{
                  jYlx%E´jYlX ݧ a  b vw ffX)  

_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
*���e�f��)��+-*���e�X���'i�޶m����l�v����������+-�w����{��
RE: Cisco IDS

Reply via email to
