Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Cisco IDS Not sending SHUN Statements to PIX

Status
Not open for further replies.

adminrdk

IS-IT--Management
Jan 21, 2004
5
US
I recently installed a Cisco IDS 4215. It is not sending any shun statements to the PIX? I can issue the who command and see the IDS from the pix but no SHUN??? I enabled several default settings on the IDS to try and get it to work, but still nothing... Any suggestions? Do I need to enable something on the pix for this to work?

 
have you enabled any ip audit policies?
Example:

ip audit attack action alarm drop
ip audit info action alarm

1) A robot may not injure a human being or, through inaction, allow a human being to come to harm.

2) A robot must obey orders given it by human beings except where such orders would conflict with the First Law.

3) A robot must protect its own existence as long as such protection does not conflict with the First or Second Law.
 
But if you don't have any positives on your IDS box you won't get any shuns, have you checked the ids logging to see if anything has been detected that would trigger a shun ?

Jan


Network Systems Engineer
CCNA/CQS/CCSP/Infosec
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top