Table of Contents
Index
- access control lists (ACLs)
- attaching ACLs to Cisco IOS IDS signatures 3-13
- limitations 1-9
- reporting to Director 1-14
- see also Cisco IOS Intrusion Detection System (Cisco IOS IDS)
- Cisco Connection Online (CCO) xi
- Cisco Documentation CD-ROM xii
- Cisco IOS Firewall Intrusion Detection System
- See Cisco IOS Intrusion Detection System (Cisco IOS IDS)
- Cisco IOS Intrusion Detection System (Cisco IOS IDS) 1-13
- attaching ACLs to signatures 3-13
- common problems 3-10 to 3-16
- disabling signatures 3-12
- dual-tier signature response 3-14
- general setup 3-4
- initialization (example) 3-5
- submap on NetRanger Director (figure) 3-9
- configuring ACLs to log policy violations 3-20
- demilitarized zone (DMZ) 1-8
- denial-of-service attack 1-8
- developing a security policy 2-4, 2-5
- encryption and authentication, limitations 1-8
- false positives 1-6
- using ACLs to reduce 3-12
- firewalls, limitations 1-7
- host-based intrusion detection systems 1-3
- improving security 2-12
- intrusion detection resources
- online A-2
- print A-1
- limitations
- Cisco IOS IDS and network performance 3-2
- NetRanger dynamic ACLs overwrite existing ACLs 3-24
- number of syslog messages sent to Director 3-17
- slow links may delay notifications to top-level Director in hierarchy 3-40
- monitoring the network 2-12
- NetRanger
- Director 1-11
- Sensor 1-11
- types of connections (figure) 2-7
- network-based IDSes 1-3
- network-based intrusion detection systems 1-4
- policy violations 1-9
- profile-based detection 1-6
- securing your network 2-6 to 2-12
- Security Wheel 2-3
- sending syslogs to a NetRanger Sensor 3-17
- Sensor
- capabilities 1-11
- types of connections (figure) 2-7
- settting up syslog notification on a router 3-20
- signature-based detection 1-6
- syslog notification
- common problems 3-22 to 3-23
- sending syslogs to a NetRanger Sensor 3-17
- setting up syslog notification on the router 3-20
- testing security 2-12







Posted: Wed Aug 4 09:13:42 PDT 1999
Copyright 1989-1999©Cisco Systems Inc.