No alarm from IPS

Similar Messages

• What is the correct procedure to connect and collect events from IPS through SDEE

  What is the correct procedure to connect and collect events from IPS through SDEE?
  We are a 3rd party application, that needs to collect and analyze the IPS events for a client.
  Currently the approach we are following is
  1) get a SubscriptionId using the URL below
  https://IP_Of_IPS/cgi-bin/sdee-server?action=open&events=evIdsAlert&force=yes
  This gets us a subscriptionId which is used in step 2
  2) Collect events from the url below
  https://IP_Of_IPS/cgi-bin/sdee-server?confirm=yes&action=get&subscriptionId=sub-sample&startTime=1362699903575432000
  a few more notes here are
  - starttime is current time in nanoseconds
  the peculiar problem here is that, even though we specify todays date, SDEE returns us the events from mid Feb (today is march 7)
  we did try a few combinations, but are out of ideas.
  any help or direction would be appreciated

  This is more an application issue than an IPS issue.
  Have you compared your app against other apps [IME]?

• Deactivate all alarms from Calendar?

  Hi,
  I synchronize my new iPhone with my MacBook Pro without problem.
  And I work with my iPhone near my laptop. So now there is something that's not convenient:
  I get all alarms twice: from iCal + Calendars
  Is there a way to deactivate all alarms from Calendar (in the same way we can do it in iCal Preferences)?
  Thanks
  PAul

  @frogdbs
  Yes I already did... But that doesn't stops the alert messages...
  @DaVBMan
  I tried to sync after selecting to disable all alerts in iCal, hoping that it would be disabled also in Calendars... but unfortunately it doesn't seems to work...
  It's a missing feature in Calendars.
  Message was edited by: Eric Azerty

• Hello-- I'am thinking off making an app to the iphone, but i'am not sure aboutsomething. the app should get some alarms from a specific phone number, and my question is, can i make an app that can receive message from a specific phone number ?

  Hello-- I'am thinking off making an app to the iphone, but i'am not sure aboutsomething. the app should get some alarms from a specific phone number, and my question is, can i make an app that can receive message from a specific phone number ?

  This needs to be asked at http://developer.apple.com/

• Alert from IPS SSM10

  How do I receive the alert message from IPS AIP SSM10?

  There are several ways to see IDS alerts:
  1. Log into the CLI (via ssh, or "session 1" form teh ASA console) and "show event alert past 01:00"
  2. Log into the sensor via the web gui (https to the sensor's management IP address)
  3. Configure the alerts to be sent to an external event collector or SIM.

• Inhibiting a Modbus object's Commfail alarms from inidicating on the alarm panel

  I have an Lookout v5.0 application that runs under W2K, SP2. This application has 65 modbus objects that have individual pots that are tied to the poll rate for their respective modbus object. When there is a failure of a modbus object, usually vandalism at the remote RTU site bring down the PLC, I would like to inhibit the modbus object from indicating commfail in the alarm window. I know about setting the poll rate to zero or some large number, but this still does not remove the alarm. Even blanking the poll rate field does nothing to remove the alarm. I would like to remove the existing alarm and prevent any further alarms from indicating on the alarm window. Visualize like a modbus alarm enab
  le/disable switch. Any suggestions?

  Hello,
  Thank you for contacting National Instruments.
  I looked into your questions about disabling the Modbus Comm alarms. The easiest way I�ve found to disable these alarms is to set the Alarm Priority for the Modbus objects to �0�. This should make the alarms not ever appear in the Alarms Window. The only downside to this is that the Alarm Priority cannot be set programmatically so once you set it to 0 you will never see the alarm until you set it to a value grater than 0.
  A second option that may or may not work for you is to use a Pulse object to continually acknowledge the alarm area where the Modbus Comm Alarms appear (this defaults to the �comm� area). To do this just create a Pulse object and then create a connection from the $Alarm.comm.ack to the Pu
  lse object�s output (the expression might look like �$Alarm.comm.ack=Timer1�). The downside to this approach is that this will only acknowledge the alarms from that area, so if the alarm is still active (for instance if the communications to the RTU is still failing) then the alarm will still appear in the Alarms window in an acknowledged state. The alarm won�t disappear until the fault condition goes away.
  I hope this helps. Let me know if there is anything I can help with or clarify.
  Ken S.
  Applications Engineering
  National Instruments

• Possible to change default alarm from "Message with Sound" to "Email"?

  I was wondering if there is a way to change the default alarm when creating an event in iCal, from "Message with sound" to "Email". The option is not available in preferences, and I was just hoping that there might be a way to change the default, using Terminal, and if not, perhaps there is another way. If anyone knows of a way to accomplish this, I’d sure appreciate it.
  Thanks very much for your help.

  Your not alone - I'm also looking for a solution to this problem.

• Automatically create iCal entry with an email alarm from a Mail.app email?

  Hi..
  Hope you can help?
  I want to set up iCal/Mail.app so that it automatically creates a new iCal entry in a specific calendar when an email is received that contains a date in the body of the message...
  Is there a way of doing this with Automator?
  This reason I am asking is that I am trying to put a link on my online store where people can click for a gift reminder email that will be sent to them on a date they specify in the body of their email.
  The link could pop-up a new email window pre-filled with Subject: 'Gift Reminder' and addressed to '[email protected]' They would be instructed to enter a single date in the text area and press Send...
  Then, when Mail.app receives the email, it would move it to a Folder called 'Gift Reminders' and automatically set up a new iCal entry that has an alarm to email the sender on that date with an email containing the Subject 'The Gift Reminder you Requested' etc and some different text in the body... It would be great if this could be set up to repeat annually also as the gift reminder is primarily for birthday gifts...
  Id there an Automator script / plug-in or way of making this happen??
  Any help greatly appreciated, though my knowledge of scripts / Automator etc is quite limited I am willing to try out any suggestions!
  Thanks,
  Jon.

  Tried a restart which showed 2183 emails unable to move which is kind of bonkers and had to quit Mail> restart and moving emails from search now appears to be working. Apple owes me about 500 hours of my life so far with Mavericks!

• Automatically create iCal entry with email alarm from a Mail.app email?

  Hi..
  Hope you can help?
  I want to set up Mail.app/iCal so that it automatically creates a new iCal entry in a specific calendar when an email is received...
  Is there a Plug-in etc that will do this?
  This reason I am asking is that I am trying to put a link on my online store where people can click for a gift reminder email that will be sent to them on a date they specify.
  The link could pop-up a new email window pre-filled with Subject: 'Gift Reminder' and addressed to '[email protected]' They would be instructed to enter a single date in the text area and press Send...
  Then, when Mail.app receives the email, it would move it to a Folder called 'Gift Reminders' and automatically set up a new iCal entry that has an alarm to email the sender on that date with an email containing the Subject 'The Gift Reminder you Requested' etc and some different text in the body... It would be great if this could be set up to repeat annually also as the gift reminder is primarily for birthday gifts...
  Id there a script / plug-in or way of making this happen??
  Any help greatly appreciated, though my knowledge of scripts / Automator etc is quite limited I am willing to try out any suggestions!
  Thanks,
  Jon.

  Tried a restart which showed 2183 emails unable to move which is kind of bonkers and had to quit Mail> restart and moving emails from search now appears to be working. Apple owes me about 500 hours of my life so far with Mavericks!

• Upgradation from IPS 6.2(1)e3 to 7.0(2)E3.

  Hi All.
     Any separate license is required to upgrading os from 6.2(1)e3 to  7.0(2)E3 .
  Pls find the show version of IPS.
  sh version
  Application Partition:
  Cisco Intrusion Prevention System, Version 6.2(1)E3
  Host:
      Realm Keys            key1.0
  Signature Definition:
      Signature Update      S407.0                   2009-06-08
      Virus Update          V1.4                     2007-03-02
  OS Version:               2.4.30-IDS-smp-bigphys
  Platform:                 WS-SVC-IDSM-2
  Serial Number:           
  Trial license, expires:   02-Mar-2011 UTC
  Sensor up-time is 10 days.
  Using 1408135168 out of 1983508480 bytes of available memory (70% usage)
  application-data is using 36.7M out of 166.8M bytes of available disk space (23%
  usage)
  boot is using 39.7M out of 68.6M bytes of available disk space (61% usage)
  application-log is using 533.0M out of 2.8G bytes of available disk space (20% u
  sage)
  MainApp          E-2008_OCT_16_16_24   (Release)   2008-10-16T16:40:57-0500   Ru
  nning
  AnalysisEngine   E-2008_OCT_16_16_24   (Release)   2008-10-16T16:40:57-0500   No
  tRunning
  CLI              E-2008_OCT_16_16_24   (Release)   2008-10-16T16:40:57-0500
  Upgrade History:
  * IPS-sig-S386-req-E3       15:15:25 UTC Sat Mar 14 2009
    IPS-sig-S407-req-E3.pkg   16:02:01 UTC Sat Jul 11 2009
  Maintenance Partition Version 2.1(3)
  Recovery Partition Version 1.1 - 6.2(1)E3
  Host Certificate Valid from: 25-Feb-2008 to 25-Feb-2010
  Appreciating your earlier reply.
  Regards,
  AVS

  There is no license required to do software upgrades.However a valid License is required to install signature updates.
  Regards
  Farrukh

• Need help REMOVING ALARM FROM ipod.

  I use my 3G ipod in my car with an alpine stereo that supports ipods. Every now and then the alarm sets its self and will go off in the middle of the night completely draining my battery by the next morning.
  Is there any way I could remove or delete the alarm function from my ipods software?

  When you say you want to "remove" pictures from the iPod, do you mean you want to transfer those pictures from your iPod to your new computer? If so, do not erase and sync your iPod as you will lose all those pictures from your iPod for ever.
  If you copied photos to your iPod using the full resolution option, enable disk use, open your iPod in "my computer", open the photos folder then open the "full resolution" folder and drag the photos out of that folder to your desktop. For enabling disk use look here.
  Disk Use.
  If you only copied the photos as thumbnails, you can't do this so you'll need a program such as this one.
  iPod Photo Copy. (Windows only)
  iPod Photo Liberator. (both Mac and Windows versions available)
  Photos as thumbnails won't be of the original quality when copied back to your computer.
  And btw, this is a "connecting iPod classic to a Mac" forum!

• 4215 Java error: When connecting from IPS event viewer

  Hello-
  I received a java error when trying to connect to my 4215 with Cisco IPS event viewer. It is as follows:
  IOException in open Subscription(): java.security.cert.CertificateExpiredException: NotAfter: Sunday March 29
  Is the web server running on 10.x.x.x:443? Please check the communication parameters of the device.
  I can set the date on my pc back to last week and all works fine like b4. I have tried updating my java to the latest version and created a new certificate from the IPS.
  Any help would greatly be appreciated:
  Thanks

  Hi,
  The issue can be resolved by following the steps as below
  1.Login to the sensor.
  2.Run the tls generate-key command.
  3.Make sure the certificate is generated.
  4.Add the device again. It should work now.
  REf: http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_qanda_item09186a008025c533.shtml
  Do rate if it helped.
  Regards
  Sridhar

• Mail not recieving ical alarms from gmail

  the only emails that mail does not retrieve from my gmail account are ones that i have sent to myself from mail as well as email alarms sent from ical. would like to recieve the ical alarms! please help

  Nate,
  Welcome to the Discussions.
  A peculiarity of POP access with Gmail, is that you cannot send, with the gmail account, a message to yourself, and then have it download.
  A Gmail account is a bit odd in its behavior. It is primarily designed to be used with web access, but does allow POP access. The server assumes that for POP access you only need to see what you have NOT read, and further assumes that downloading is the same as have read a message, and the same with a message from yourself. Because of this, you will not download message sent from someone else, on but one computer, without some manual intervention.
  Ernie

• Critical Alarms from LAPs in Maintenance State

  Should a critical alarm be triggered when an LAP disassociates from a WLC if it is placed in Maintenance State before it's taken offline?
  Should I delete, clear or acknowledge the critical alarm if a LAP was taken offline before it was placed in Maintenance state?
  Should I still put LAPs in maintenance state if they were taken offline before I had a chance to?
  Using Cisco Prime Infrastructure version 1.2

  I just upgraded CPI to version 2.2 and the controllers to 7.6.130 and I'm still getting the same result.
  I'm getting critical alarms for APs in Maintenance State.

• Unable to copy current-config from IPS 4240 to FTP server

  I am in the process of upgrading our Signature File at a client site where there is a 4240 installed.
  The readme file for Signature S353 indicates that a copy of the running configuration should be saved away.
  I have FTP running on my desktop.
  I am entering the following command on the IPS at CLI:
  bhiips# copy current-config ftp://192.168.5.189
  where I am then prompted for my username, then filename, then password.
  I watch as the IPS indicates "Generating current config".
  The log output of the FTP (Filezilla) shows my FTP connection successful, but then it bombs. Here is an excerpt:
  00151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> Connected, sending welcome message...
  (000151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> 220-FileZilla Server version 0.9.24 beta
  (000151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> 220-written by Tim Kosse ([email protected])
  (000151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> 220 Please visit http://sourceforge.net/projects/filezilla/
  (000151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> USER Kevin
  (000151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> 331 Password required for kevin
  (000151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> PASS ***
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> 230 Logged on
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> PWD
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> 257 "/" is current directory.
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> EPSV
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> 229 Entering Extended Passive Mode (|||2125|)
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> TYPE I
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> 200 Type set to I
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> STOR current
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> 550 Permission denied
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> disconnected.
  What could be the problem here? I checked the Windows Firewall on my workstation at 192.168.5.189,but it is turned off. I am not sure why I cant save the config away.
  It is holding me up from moving forward with the upgrade to Sig 353.
  thx

  Have you checked permissions on your FTP server to see if a client is able to PUT a file onto your FTP server.
  Try connecting from a separate windows PC to your FTP server and login with the userid and password you are using in your copy command. And then try to push a file with a similar name on to your FTP server.
  It could be that the FTP server is not configured to allow that userid to put a file on the server.
  When you try the above test try and use an FTP client that supports Passive mode. There might be a problem with passive mode on your FTP server.
  You might also try running another test from the sensor, but this time instead of copying the configuration try copying the license file from the sensor to your ftp server.