|
This page was exported from Free Cisco Training & Resources - Certification Exam Preparation
[ https://www.ciscobibles.com ] Export date: Wed Mar 12 15:48:50 2025 / +0000 GMT |
|||
CCSP SNRS Lab7 - IOS IDS
【Lab Topology】
【Lab Object】 Technical characteristics: 1. IOS IDS is an in-line intrusion sensor and scan each packet crossing the router which matches any one of these signatures. 2. When discovering suspicious activities, you can take the following actions: (1) alarm:send alarm to syslog server or Cisco Secure IDS Director (2) Drop:Drop this packet (3) Reset:reset this TCP connection(but it will continue to forward this packet, so it is recommended to perform forwarding and dropping simultaneously), when IOS IDS is enabled, IOS Firewall will be enabled automatically. Some parameters will function at this time. For example:
【Lab Process】 1. Configuration of GW.
2. Test: Create alarm system on syslog server to check the alarm information.
[k1]The maximum number of e-mail receivers, the default is 250 [k2]Send log to director [k3]Send log to syslog server [k4]Disable IDS and clear all IDS configurations. |
|||
|
Post date: 2010-08-23 11:49:38 Post date GMT: 2010-08-23 03:49:38 Post modified date: 2010-08-23 11:49:38 Post modified date GMT: 2010-08-23 03:49:38 |
|||
| Powered by [ Universal Post Manager ] plugin. HTML saving format developed by gVectors Team www.gVectors.com |
