... 14 The Cisco Security Wheel 15 Corporate Security Policy 16 Secure 17 Access Control 17 Encryption 18 Authentication 18 Vulnerability Patching 18 Monitor and Respond 19 Test 19 Manage and Improve 20 Threats ... 209 Configuring Automatic IP Logging 211 Configuring IP Logging 212 Generating IP Logs 214 Upgrading the Sensor 216 Upgrading from 3 .1 to 4.x 216 26...
Ngày tải lên: 13/08/2014, 15:20
... 9/25/03 4:43 PM Page 14 3 15 6 Chapter 4 • Cisco IDS Management Table 4 .1 sysconfig-director Parameters Field Input Director Host ID 1- 65535 Director Organization ID 1- 65535 Director Host Name 256 ... 9/25/03 4:43 PM Page 11 9 Cisco IDS Management • Chapter 4 14 7 PostOffice Settings (Watchdog) To configure the additional PostOffice settings (Watchdog) follow these steps: 1. Sel...
Ngày tải lên: 13/08/2014, 15:20
cisco security professional''''s guide to secure intrusion detection systems phần 4 pot
... eth1, tx Network Statistics eth1 Link encap:Ethernet HWaddr 00:E0:29:75:46:75 inet addr :19 2 .16 8.50. 51 Bcast :19 2 .16 8.50.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU :15 00 Metric :1 RX ... 9/30/03 4 :14 PM Page 19 3 19 0 Chapter 5 • Configuring the Appliance Sensor Figure 5.3 Telnet Server Access to IDS Sensor Serial Console Password: *********** Ciscoids -1 Ciscoid...
Ngày tải lên: 13/08/2014, 15:20
cisco security professional''''s guide to secure intrusion detection systems phần 6 pot
... similar to this: Router1 ! interface Ethernet1 ip address 17 2 .16 .2 .1 255.255.255.0 ip access-group 11 0 out ! access-list 11 0 permit tcp 17 2 .16 .1. 30 any eq telnet access-list 11 0 deny tcp any 17 2 .16 .2 .10 access-list ... ABC 17 2 .16 .1. 0/24 Router1 19 2 .16 8.0.0/29 Serial1 .1 Serial0 .1 Router2 Serial0 .2 Serial1 .1 Client1 Client2 Client3 .10 .20 .30 Clien...
Ngày tải lên: 13/08/2014, 15:20
cisco security professional''''s guide to secure intrusion detection systems phần 7 potx
... on switch S1: R4000 -1( config)# monitor session 1 source interface fa2 /1 rx R4000 -1( config)# monitor session 1 destination remote vlan 12 3 On switch S2: R4000-2(config)# monitor session 1 source interface ... ACL would be created like so: R6000 (config)# ip access-list 10 1 permit tcp 19 2 .16 8 .1. 0 0.0.0.255 range 10 24 32000 10 .1. 1.0 0.0.0.255 lt 10 24 This list does not...
Ngày tải lên: 13/08/2014, 15:20
cisco security professional''''s guide to secure intrusion detection systems phần 10 pot
... 310 8-MIME Overflow Bug 611 0-RPC RSTATD Sweep 611 1-RPC RUSERSD Sweep 611 2-RPC NFS Sweep 611 3-RPC MOUNTD Sweep 611 4-RPC YPPASSWDD Sweep 611 5-RPC SELECTION_SVC Sweep 611 6-RPC REXD Sweep 611 7-RPC ... 518 8-HTTP Tunneling ■ Release version S 11 517 8-MS Index Server File/Path Recon 517 9-PHP-Nuke File Upload 518 0-sgiMerchant Directory Traversal 518 1-MacOS Ap...
Ngày tải lên: 13/08/2014, 15:20
cisco security professional''''s guide to secure intrusion detection systems phần 2 pps
... mode) 10 .0.0.4 -> sensor1 UDP D=45000 S=45000 LEN=56 sensor1 -> 10 .0.0.4 UDP D=45000 S=45000 LEN=56 17 2 .18 .12 4 .14 2 -> sensor1 UDP D=45000 S=45000 LEN=56 sensor1 -> 17 2 .18 .12 4 .19 4 UDP ... (Fast Ethernet) to be used for monitoring and control. Due to its processing capabilities, the Cisco 4 210 is optimized to monitor multiple T1/E1,T3, or Ethernet environm...
Ngày tải lên: 13/08/2014, 15:20
cisco security professional''''s guide to secure intrusion detection systems phần 5 ppsx
... current 4,47,2003/06 /18 ,22:40:23,2003/06 /18 ,14 :40:23 ,10 008,57 ,10 0,OUT,OUT,2, 3030,0,TCP/I P ,10 .4.2.75,0.0.0.0,0 ,13 9,0.0.0.0, 4,48,2003/06 /18 ,23: 21: 50,2003/06 /18 ,15 : 21: 50 ,10 008,57 ,10 0,OUT,OUT,2, 3030,0,TCP/I P ,10 .8.3.24,0.0.0.0,0 ,13 9,0.0.0.0,7 To ... %DTP-5-TRUNKPORTON:Port 4 /1 has become dot1q trunk 2003 Jun 15 07:32: 51 PDT -07:00 %PAGP-5-PORTTOSTP:Port 4...
Ngày tải lên: 13/08/2014, 15:20
cisco security professional''''s guide to secure intrusion detection systems phần 8 docx
... provided by the Security Monitor .To access the Security Monitor from the CiscoWorks2000 Desktop, select the Monitoring Center and then the Security Monitor,as shown in Figure 10 .38. To access reports ... material of the Cisco Secure Intrusion Detection Systems Exam (CSIDS 9E0 -10 0) still refers to a total number of 59 signatures that Cisco IOS-IDS supports. www.syng...
Ngày tải lên: 13/08/2014, 15:20
cisco security professional''''s guide to secure intrusion detection systems phần 9 pdf
... list of usernames with SNMP OID .1. 3.6 .1. 4 .1. 77 .1. 2.25. SubSigId 1 fires when an attempt is made to enumerate the list of network shares with SNMP OID .1. 3.6 .1. 4 .1. 77 .1. 2.27. ■ 4504-SNMP IOS Configuration ... LOCK ■ Sub Sig 11 UNLOCK ■ Sub Sig 12 REVLABEL ■ Sub Sig 13 REVLOG Sub ■ Sig 14 REVADD ■ Sub Sig 15 REVNUM ■ Sub Sig 16 SETATTRIBUTE ■ Sub Sig 17 GETATTRIB...
Ngày tải lên: 13/08/2014, 15:20