IPS and Switching

Similar Messages

• IPS and Switch problem

  Dears,
  i need to use commands:
  monitor session 1 source interface Fa0/1 - 23
  and
  monitor session 1 destination interface Fa0/24
  but when i put the second command i lost the connection with IPS sensor......what is the problem?
  thank you.

  By making your port a SPAN port to in essence mirror all traffic to the destination port from your source port(s). You cannot interact on the destination port. I mean that the destination port does not function as an access port anymore until you remove the SPAN from it. You need to find an alternate path to your IPS. Either from the outside or console....

• Cisco VMS can support management of router and switches

  I want to use Cisco VMS to manage my IPS and firewalls.
  A also have two routere and five switches in place can i use the same software to monitor and manage them or I need separate software.

  VMS 2.3 components and the capabilities of each. VMS is packaged in one sub-box with Obtaining Documentation directing you to VMS documentation and the following two CDs:
  1.VMS Management and Monitoring Centers Disk 1 of 2Contains these VMS components and associated product documentation:
  CiscoWorks Common Services
  Auto Update Server
  Management Center for Firewalls
  Management Center for IPS Sensors1
  Monitoring Center for Performance
  Monitoring Center for Security
  Management Center for VPN Routers
  2.VMS Management and Monitoring Centers Disk 2 of 2Contains these VMS components and associated product documentation:
  http://www.cisco.com/en/US/products/sw/cscowork/ps2330/products_installation_guide_chapter09186a00803bd364.html#wp1036990
  Management Center for Cisco Security Agents
  Resource Manager Essentials
  Resource Manager Essentials IDU 12
  Management Center for IDS Sensors 2.0.12
  Monitoring Center for Security 2.0.13
  Note You must install IDU 12 included on Disk 2 for RME to work with VMS 2.3 even if you already have RME 3.5 installed on your server.

• Help with inline VLAN Pair and switch configuration

  Hello,
  I'm new to IPS and IDS in general, but I have an IPS-4255 and a couple of Catalyst 2900 switches to experiment with. I'm currently trying to enable an Inline VLAN Pair configuration on the IPS and have a simple setup.
  SW1 and SW2 have vlans 100 and 200 configured. PC1 and PC2 are on the same IP range (no routing). PC1 on vlan 100 connects to Sw1. PC2 on vlan 200 connects to SW2. The IPS connects to a SW2 trunking port, and SW1 and SW2 are connected together on another trunking port.
  I know that my trunking is working because PC1 and PC2 can ping each other whenever they are on the same vlan of either switch. But, they can't ping when on the separate vlans.
  From what I've read, the IPS with an Inline VLAN Pair acts as a bridge between the two vlans and should forward the traffic if it passes inspection. However, the IPS does not appear to see any traffic at all.
  My IPS is configured with inline VLAN pair 100->200 and associated to vs0.
  Have I missed something in my config somewhere? Or am I misunderstanding how inline VLAN Pairs are supposed to work?
  Below are my configs for the switches and the IPS.
  Any help would be appreciated. Thank you!
  IPS Config
  service interface
  physical-interfaces GigabitEthernet0/0
  no description
  admin-state enabled
  duplex auto
  speed auto
  alt-tcp-reset-interface interface-name GigabitEthernet0/3
  subinterface-type inline-vlan-pair
  subinterface 1
  description test
  vlan1 100
  vlan2 200
  exit
  exit
  service analysis-engine
  virtual-sensor vs0
  physical-interface GigabitEthernet0/0 subinterface-number 1
  inline-TCP-session-tracking-mode vlan-only
  exit
  exit
  SW1 and SW2 config
  interface FastEthernet0/1
  switchport access vlan 100
  interface FastEthernet0/9
  switchport access vlan 200
  interface FastEthernet0/18
  switchport trunk encapsulation dot1q
  switchport mode trunk
  interface FastEthernet0/24 (Sw 2 only)
  description IPS port
  switchport trunk encapsulation dot1q
  switchport mode trunk

  It has been awhile since I've dealt with a 2900 switch to I am just trying to guess at what may be wrong with your setup.
  I noticed that neither of your trunk port configuration are specifically stating which vlans are allowed on the trunks.
  It is possible that for the trunk between the 2 switches there may be some protocol negotiation so the switches can determine which vlans to trunk, BUT no such negotiation will happen with the sensor. If I remember right you will need to specifically state which vlans the trunk to the sensor should carry. If I remember right the commmand would be something like:
  switchport trunk allowed-vlan 100,200
  You will want to find the show command on your switch that will show you which vlans are actually being trunked by the port. It might be something like "show switchport trunk"
  And you will want to verify that the switch is actually trunking vlans 100 and 200 to your sensor.
  On your sensor you will want to execute "show interfaces" and look at the statistics for Gig0/0 to see if it is receiving packets on vlan 100 and 200.
  You can also run "packet display GigabitEthernet0/0" to see if any packets are making it to your sensor.
  You will also want to check Link status and make sure your sensor is linking up properly with your switch. A common mistake is to connect the wrong ports, as some sensors do not have the port numbers clearly marked.
  NOTE: If the above doesn't help, then take the additional step of eliminating the second switch. Attach both pcs to the same SW2 switch (1 in each vlan). The second switch isn't necessary to test the inline vlan pair functionality. Connecting both PCs to the same switch will help eliminate any possibility of misconfiguration between the 2 switches.

• Follow-up: Starting, Launching and Switching ...

  Follow-up: Starting, Launching and Switching ... Messing around with the Windows UI - not a feature problem, but a provisioning problem! Now start listening and please fix it this time! 
  (Is it still program managers or people in power designing the UI for Windows? It certainly does not look like domain specialist or software engineering designing the solution here - it's just too weak for that to look like a professional solution?
  Please let educated people do their work ...)
  Problem:
  - Task Bar = (is and still is originally) Start. So keep promoting task bar and kill the new Start. Task Bar is Start.
  - Virtual Desktop lacks virtual Start (= virtual Task Bar) (Virtual Desktop only have virtual launch from the virtual documents (the virtual desktop) ... you need to add virtual start beyond virtual launch.
  - Starting universal Windows apps including touch goes to the virtual task bar (add virtualization above, i.e. context changes - for touch meaning i.e. increasing the task bar (Start) areas height)
  Cause:
  Steven Sinofsky:
  @Computermensch writes “The problem with this "analysis" (show me the data) is that you're only managing current activities surrounding the taskbar. So with respect "to evolving the taskbar" you're only developing it within its
  current operational framework while developing or evolution of it really should refer to developing the taskbars concept.” 
  0) A history reminder - where is Windows 10 now starting program: Back where Windows 7 left off.
  Well, guess I do not have to remind about what happened to Windows 8. Now we're back at it. Welcome back to testing ...
  I did some of them, testing Windows client for Windows Vista, Windows 7, Windows 8 and now Windows 10.
  Let's go back in time to 2008 - Engineneering Windows 7: 
  Follow-up: Starting, Launching, and Switching
  http://blogs.msdn.com/b/e7/archive/2008/09/29/follow-up-starting-launching-and-switching.aspx
  Steven Sinofsky:
  @Computermensch writes “The problem with this "analysis" (show me the data) is that you're only managing current activities surrounding the taskbar. So with respect "to evolving the taskbar" you're only developing it within its
  current operational framework while developing or evolution of it really should refer to developing the taskbars concept.” 
  Then let's go forward in time - to Windows 8 coming up with a new start and launch context namely the Start Screen - and now kind of back in time again to Windows 7 and the desktop using Windows 10. So now we're also back to the Task Bar!!!! Hence we're
  back to developing and evolving the way of Starting programs.
  Microsoft just have a serious problem working the provisioning in it system, i.e. what concepts you supply (provision) to the user. For instance just compare an open instance of Windows Explorer with MacOS Finder. It's the same features - but the provisioning
  is just much better in Finder. The concepts are just an important mess in Windows - and needs serious clean up.
  No new features! Evolvle the pinning (task bar and make it work with the virtual desktop - including touch (just add some height man ...).
  And fix the freaking provisioning of concepts in the All Apps list. For instance take a look at the naming in Linux for some standard folders - instead of the bloating 3rd party names.
  1) Provisioning: Now back to Windows 10 and starting programs
  It's the task bar that needs development (Windows 8 kind-of "Start Menu" in Windows 7)  Take a look at my comment above again for engineering Windows 7 about the taskbar on evolution - now in context with Virtual Desktops:
         - May add some height to the task bar - and you can have kind-of tilesized stuff there.
         - Have the taskbar configuration of pins switch (be variable) with the virtual desktop. May add an ekstra feature to pin program across all virtual desktops.
         - Do not have 2 different places for pinning programs (really bad provisioning ...). Lets see some nice categories instead when pressing the start button. It really confusing pressing the start menu button - and
  then you see a place like the task bar to pin programs. Typical Microsoft end up scenario, the more, the merrier ...
  Please cut it down to having a pinning feature working variably in context (the task bar) with virtual desktops.
  2) Finally the All Apps list pressing the start menu button: using navigation (categories, tags or filters!!!!!) to look up and finding programs not in use on a daily or weekly basis - now in context with the virtual desktop
  The All Apps list that needs a nice feature to support categorization, really better provisioning in the UI of user or standard concepts (now come on, man - fix the mess. Just take a look at the complexity in that list ...). You could add a feature
  to filter the All Apps list in context with the concepts for the virtual desktop.
  At least provide the application infrastructure for categorization in the Start Menu. So you could process it as a third party. See what happens. Add app store later then. Whatever. Make categorization happen. No more bloat navigating for programs.
  Add a template feature to the categorization. Provide 2-3 templates with Windows and let people tag there programs. Let them extend the templates ... the concepts when doing their own user concepts.
  With a template feature a user just have to fill in the blanks i.e. tag his/her programs - and the menus will parse equally. Hey, the template feature could even parse into virtual desktops. I.e. using a dev variant of a template.
  It's going to be 2015. And compositional software design have been around for some time. Including factories for configuring software variability. Some come on now. Let's work.
  4) Conclusion
  360 degrees now on virtual desktops, task bar, all apps and workflow please! Make it happen.
  The problem with Windows 8 was not bad features - but bad provisioning including empty programs like the new wau media players ... underdeveloped features (no really good quantity of content demonstrating value = bad provisioning) ... completely lack of
  demonstrating the value of the new UI. Like if Sharepoint or any other CMS was demonstrated completely blank with no sites and empty features, no templates. Just nothing.
  Please do not miss the oppertunity to demonstrate the value of an evolved UI this time.
  Please complete the provisioning. Your greatest problem is releasing undone things - may be the intension is there (recall DB schemas). However the "DB extension" is empty on release? Which consumers just buy the DB schema :o). Add some "movies"
  (content) please ... add frameworks for content and provisioning ... use templates. If you do not understand this ... go away program manager ;o) Let a good software engineering read it.
  Now let's fully develop the virtual features in the desktop in Windows 10. And have them provisioned - so people can see how to use them. That unfortunately never happened during engineering in Windows 8.

  3 different ways and displays for pinning a program for Start!
  Please consider merging Start (on the Start), Start Screen and the task bar - with pins extending the Task Bar and using the Metro UI icons overall including on the desktop. It would be a nice move on the look and feel - while the task bar would be
  the same. Add virtualization for pins as well on the task bar. Make shortscuts and docs on the virtual desktop actual as well - binding dynamically to a virtual desktop - instead of formal and static.
  Just observed the Start Screen can be turned back on using properties on the Task Bar.
  Many ambigious concepts now for Starting programs instead of just using a Consolidated Start concept for Start Screen, Start on the Start Menu and Task bar.

• What is diff b/w pick and switch activity in bpel?

  what is the difference between pick activity and switch activity in BPEL? example Please

  1)The switch activity is an IfElse with two different flows, based on a conditional expression, derived out of existing message(s) in your process.
  Eg. i) Whether the salary is greater than 10,000 or not.
  ii) Whether the age is greater than 60 or not.
  iii) whether the department is finance or not.
  2)The pick activity is an IfElse with two different flows, based on two different messages/signals, that you can expect to receive(when you are waiting for a message) from outside of your process.
  Eg. i) whether you received a reply message or a timeout signal.
  ii) whether you received a AddNewEmployee message or UpdateEmployee message.
  The (decision for which route to be taken for) pick activity is based on the MessageType, while the switch is based on the contents in a message. The pick activity implies that you are waiting for a message, this can occur, at the start of your process or in the mid of your process. However, switch activity doesnot wait for any message, hence can only occur in the mid of the process and can not be the start of a process.
  Mark the posting appropriately as "helpful" or "correct answer", if your issue is solved.

• Can I have two or more JVMs in one mashin and switch between them?

  Hi all,
  I want to have two JVMs in one mashin and switch between them via a httpListener. If I can, could you please guide me to do it?
  Thanks in advance,
  Orod Semsarzadeh

  may be my question is not fully clear. I mean, I want to have an bottun in my JSP when I click on it, 1 thread will be created and work in another JVM.

• Best Buy baited me and switched up on the ASUS G74SX-BBK9 vs. the BBK11 - not cool!

  My question to Best Buy is - Have things gotten so bad in your business that you have to resort to what amounts to bait and switch tactics to get people into your stores?
  I am a long time customer and Rewards Zone member. Between my family and my extended family I would say I have an impact on 7 to 10K in Best  Buy business annually (conservative estimate really) as the family tech guru. Unfortunately more often than not I find BEST Buy, really isn't in the long run and I find that sad. Let me give you an example:
  I have been following the ASUS G73 and now G74 laptops for the past couple years. I have been interested in getting one because I am a middle aged performance computer nut and will not settle for sub-standard performance even in my portable computer. The ASUS G74SX-BBK9 caught my eye and I went down to the local Best Buy with cash in my pocket to pick one up. When I arrived I learned that the BBK9 is nearly impossible to find but I am in luck, it has been replaced by the BBK11 and it is in stock!. Upon closer inspection I learn that the "new" BBK11 is really the same computer as the BBK9 with a low performance hard drive AND A HIGHER PRICE!!! Please allow me a moment to inform you that when it comes to IT hardware it does not INCREASE in value as the model ages, it actually LOSES value. And it is crystal clear to me that Best Buy thinks:
  1. They can pull the ole switcheroo and no one will notice.
  2. The customer is stupid and has more money than brains.
  3. Specs are meaningless in high performance computer hardware.
  4 or all of the above!
  But what really got to me was the attitude of the staff. I asked if they could help me locate a BBK9 and I would buy it that second. After a couple minutes of a passive search they said it was impossible to find. Strangely enough it is on the Best Buy site - granted it is now listed as an Outlet item, but it clearly is available somewhere. 
  It does not make any sense to pay more for less and that makes me sick really. But I will be traveling for 10 days and don't have time to do an online order so I offered to buy a BBK11 but at a slightly better price than the $1249 it was listed at. Being completely fair - I would pay $1249 for a BBK9 in a microsecond if I could find one!!! But alas it has been marked down $70 and is only available in stores if you win the lottery and can find one. I am guessing it is right next the the unicorns and pot of gold at the base of a rainbow in the software section!! Are you starting to understand why this feels like a bait and switch?? The website says it exists, but good luck finding one - just feels like a foot traffic in the store come-on to me.
  After a few minutes the lady I spoke with came back from a visit with a supervisor and said, "the price that is on it now, is the price it sells for and there is nothing we can do, and we have nothing else to talk about." I agreed that she was right about one thing - we have nothing else to talk about and I left feeling like an idiot for even walking into the store in the first place. A word of advice from a customer service manger - making your customers feel like idiots is not the way to build a business that will last. It is the way to alienate your customers and ruin your brand reputation in the long run.
  Good luck and I hope you survive - but I think you are way off track........

  So you are expecting for BBY to stock a discontinued model?
  I agree that Asus dropped the ball. They did make an inferior "new" product. But that's not BBYs fault. There are probably a few BBK9s out there, hence why it's still on the website but online stock checks aren't 100% reliable.
  If I was BBY I wouldn't have budged on the price either. They are just a middle man and because you want to buy it for less just means they will see even less profit on a razor thin margin to begin with.
  This is far from bait and switch as it wasn't advertised, Wasn't put on an unbelievable sale, nor did they upsell you to another product. You researched what you wanted, thought you found it at BBY and when they didn't have an outdated model in stock then the next model was suggested I assume.

• HT1414 i downloaded the ios7, now i cant swipe to unlock my screen, when i go to itunes and click restore iphone it says i have to get into iphone and switch off location services, but i Cant as i am unable to unlock iphone. And my lock button is broken..

  i downloaded ios7 my iphone 4s now isnt working i am unable to slide to unlock my iphone, yet my lock button at the top of my phone is broken and has been for sometime so i have been using the accessibility feature to lock and switch off my iphone i can still click on this button and i can still swipe up and down but i am unable to swipe too unlock and enter my passcode.. so i am thinking somethings wrong with the software? when i try to restore my iphone in itunes i am unable to as ios7 needs for location services to be switched off in iphone but i cant do this cos i cant get into my iphone, can someone please help me,,, please,,,

  IF the device does NOT have a cracked screen or liquid damage and is in hardware warrenty.. apple can repair/replace the device for free.
  Call apple tech to find out what your croverage is for fixing that button
  IF IT DOES then you will pay a fee for repairing

• Im trying to watch movies from my macbook pro to my new vizio, but when I connect the minidisplayport to HDMI cable to input 2, and switch the input from my remote to that input, nothing happens.  What am I doing wrong?

  I am trying to watch movies from my macbook pro (2010) on my new vizio tv.  I connected the minidisplayport to HDMI cable (bought from the apple store) and switched the input to the right input but nothing happens. What am I doing wrong?

  Hi T,
  Open Sys Prefs > Displays and check the settings there.

• I'm currently running ios 5 beta on my iphone 4 and when i woke up this morning my phone had decided to automatically update the software OTA. After connecting to wifi and switching on location i proceeded to follow the instructions 'slide to setup'. I wa

  I'm currently running ios 5 beta on my iphone 4 and when i woke up this morning my phone had decided to automatically update the software OTA. After connecting to wifi and switching on location i proceeded to follow the instructions 'slide to setup'. I was informed that it may take 3 minutes to activate phone but was then presented with the screen 'Could not Activate iphone', this is because the activation server is unavailable. Can anybody shed some light on this for me?
  Many thanks

  Can anybody shed some light on this for me?
  Not here. iOS5 beta is only available to registered developers, and discussing it publicly outside of the private developer forums is a violation of the non-disclosure agreement you signed to access the beta.

• I have an iphone6. I am unsure whether to go from 8.1.3 operating system and switch to  ICloud Drive or not?  Has anyone done this?  Is it awesome?  I need to be able to access my resume from phone. I think this will help me achieve this.am i right?

  I have an iphone6. I am unsure whether to go from 8.1.3 operating system and switch to  ICloud Drive or not?  Has anyone done this?  Is it awesome?  I need to be able to access my resume from phone. I think this will help me achieve this?  Am i right?  Is there any body out there right now that could help me?  I'm thinking about going from 8.1.3 to I guess yosemite?  Or is that for Mac computers?  I don't understand the language entirely on the help page.   Anyone's straight forward and easy stepped advice would be much appreciated.  I'm so frustrated and I need a job so badly!  Drowning in debt.  Any help appreciated!
  Thanks,
  A

  You're a Windows user, correct? If so, read here:
  http://support.apple.com/kb/DL1455

• Can i set up two emails accounts on the mail function tab and switch between them

  I would like to be able to set up two email accounts on the mail tab on the Iphone 5 and switch between them, is this possible?

  Yes it is possible to set up multiple accounts but you cannot switch between them in the mail app.  What you can do in settings/mail etc is have one set as active an dthe other as inactive and you can change that from time to time if you want

• I think things would have been better without this icloud mess......  someone help me like it again.   1). i have more than 1 account set up with icloud. so i deleted 1 account from the settings on my iphone to try and switch to the other account and ever

  i think things would have been better without this icloud mess......
  someone help me like it again.
  1). i have more than 1 account set up with icloud. so i deleted 1 account from the settings on my iphone to try and switch to the other account and everything became a huge mess. (on my iphone i LOST some of my contacts, all of my reminders are gone, and nothing is showing up on the ical on my iphone, and only some notes are showing).......
  2). everything is still shown on my macbook pro.... but when i tired to go and sync it..... nothing is transfering to my phone........
  3). when i log into the 2 icloud accounts i have with icloud(.com) nothing is showing up in there also......
  whats is going on..... this is a huge mess for me. i want to go back the way is was like 1-2 years ago. when you can just sync things from the computer to the phone and not have to go through icloud....... ive been struggling with icloud but today just me hate it to the max.
  ANY HELP ON HOW I CAN FIX ALL OF THIS.....
  THANK YOU VERY MUCH!

  the version im using is 10.7.5
  im not sure what you mean by you second statement. when i open those application on my macbook its on my macbook but when i sign into icloud. i have those option selected.
  maybe my problem is im using the wrong ID...... lol.
  is there away you can delete or change icloud accounts/ ID's???

• How do i stop one album and switch to another

  This may have been answered but I can;'t find it.  This is where the faq took me. 
  I'm beyond frustrated right now.  This is on an iphone 4, running ios6.  I downloaded an album yesterday and it played fine.  Never stopped, though.  So, I tapped the pause symbol and left it.  This morning I downloaded another album.  Firstly, it doesn't show up on the list.  Secondly, the first album is still in the "Now Playing" and I can't get from that to an album view of my playlist.  Yes, I've tried a restart.  No, I'm not stupid and am just looking for the "trick" to make this work. 

  Solved.  Overly simple, basically showing iTunes as clunky.  Apparently, the designers in the cube farm only though of someone loading one song at a time.   Try to load an album and it loads a song at a time instead of as a file.  The consequence is that if the iTunes server or the internet is busy, some or most of the album winds up in the cloud and if it isn't completed it won't show up on the menu.  C'mon guys, you're better than this.   Another issue is that it doesn't seem that one can put an album away, instead it stays ready to play unless une goes back to albums and switches, which is a problem if the above occurs.  Call me picky but I'm just used to putting things away.