Careful with the resets, as someone could spoof a server of your, causing you to send a reset to one of your own servers, taking it off line.
-- RFC 1149 Compliant. Get in my head: http://sar.dynu.com ""Cisco Breaker"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi, > > Latest update is at > http://www.cisco.com/kobayashi/sw-center/sw-ciscosecure.shtml > For the attacks you cant do anything other than blocking or reset. You can > change the severtiy level for e-mails. > > Best regards, > > > ""Johnson, Richard (NY Int)"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Hi All, > > > > Just some basic questions... > > > > Currently my IDS 4210 is setup to block and do a TCP reset when I get hit > > with WWW WinNT cmd.exe Access. What else can I do to stop this? Also, I am > > getting emailed upon these "attacks". But all it says is the severity > level. > > How do I get what exactly is being done? Lastly, Where do I find the > latest > > update for the IDS? Is there a way to automate the search for this on the > > IDS itself? > > > > > > Thanks, > > > > Rich Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44208&t=44153 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
