I have bought a Cisco ASA 5510 firewall and am trying to use ASDM to configure it. After putting the firewall on I put the url https://192.168.1.1 the web page asks for the username and passwo...
I'm in the process of configuring DFS. I've done it before, but we've had issues with the various firewalls and IPS units in between the branch offices.
So, for 500 points, I'd like to kno...
I need to do some stress test to my sever. Where can I find some DOS attack source code?
I'm looking for information on testing/comparison between Juniper IDP and TippingPoint IPS. Links to any websites, white papers or personal experiences would be highly appreciated. We have com...
Ok, so my parent companies IT director came to me today and stated that he received a call from our ISP today stating that they are noticing quite an out flux of "spam" messages coming off of ...
Hello,
I am aspiring for an Information Security Managerial role. I have been working on technical part all this while and never attended a management interview. Can you give some input on ...
HI,
I have question on Port Spanning on a Cisco 2960 switch. I want to monitor a port on a switch and I want both incoming and outgoing traffic on that port. In the past on other switches I...
Hey I have a scenario that maybe you could help with. Say you have 10 computers that connect to the internet via a broadband connections and your company wants you to set up an IDS. What are t...
Hi, I have a Cisco IDS 4215 with no password and no CD. Can I recover the password for this device, or can I clear the configuration and set a new password? The only prompt I get on bootup...
I have a file that was sent to me from an IDS system it has an sfo extenstion. What program can I use to open the file.
I am trying to tune my new Snort box. I am getting a number of false positive alerts related to the http_inspect preproccessor. The alerts are associated with outgoing traffic from my users ...
Please explain it in simple plain English, don't mention lots of technical words,so i can understand. I'm just after the general differences, not the deep information...
Thanks
Hi, we are running our sensor in promiscous mode so that it doesn't block any traffic and having the cisco even viewer email us the IDS event logs. A log summart we have is like this:
High ...
I have 1 server and I want to stop attack on it (like DOS)
I already install Snort as IDS, but how to make it become IPS (Snort + Iptables?)
Thanks in advanced!
Hi,
I am running snort and snortsam on windows. I have configured it to run with rules to block users attempting to access the internet with the following:
alert udp 10.10.10.11 any -> any 5...
what is snort sensor and how does it work
To get up and running quickly I installed a VMDK of Linux, Snort and Base. This is working well and quickly. But now I would like to upgrade Snort and Base to their latest versions and have t...
Please let us know the installation of snort recent version. And I am installing in Redhat Linux.
And also i need Snort tuning. I need to reinstall Snort.
Can someone quickly explain what inline vs passive is in Snort.
Besides SENTINIX (discontinued), is there an ACID or Snort + Etheral linux distribution system?
Thanks.
how to set up snort to prevent from ARP spoofing?
Hi,
Do you know where is possible to find a good tutorial in order to install snort 2.8 on debian 4 ?
Thanks
Regards,
L irlandais
hey guys, I have looked in to IPS systems for my network for a few weeks now. Im about as lost as when I started. I have 3 pairs of firewalls that I was looking at getting some IPS/IDS syst...
A is windows, other ip include router.
Is this normal, thanks.
how do i convert .cwk files?
