What is IP logging, as defined for the Cisco IDS appliance?

What is IP logging, as defined for the Cisco IDS appliance?

What is IP logging, as defined for the Cisco IDS appliance?

A.
IDS logs IP address information for hosts being attacked.

B.
IDS logs user information from an attacking host.

C.
IDS captures packets from an attacking host.

D.
IDS logs IP address information from an attacking host.

Explanation:
In addition to the packet capture that analyzes the traffic to identify malicious activity, the IDSM-2 can perform IP session logging that can be configured as a response action on a per-signature basis. If configured as such, when the signature fires, session logs will be created over a pre-specified time period in a TCP Dump format.
Ref:
Cisco Services Modules – Cisco Catalyst 6500 IDS (IDSM-2) Services Module



Leave a Reply 0

Your email address will not be published. Required fields are marked *