Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security ISSForum
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISSForum] RSKill Gateway configuration on Proventia

from [Mustapha Huneyd] Network Security [Permanent Link]
Subject: [ISSForum] RSKill Gateway configuration on Proventia
Date: Tue, 21 Dec 2004 10:46:26 +0400
What is the RSKill gateway that must be configured ob the Proventia A series applicance? The RSKill Interface connects to a switch on a VLAN and doesnot necessarily have a gateway.

Mustapha

Etisalat, Abu Dhabi

----- Original Message ----- From: "Mustapha Huneyd" <mhbengal@yahoo.com>
To: <issforum@iss.net>
Cc: <support@iss.net>
Sent: Monday, October 18, 2004 1:08 PM
Subject: [ISSForum] RSKill for Multiple Monitoring segments on Proventia "A"


How does one implement RSKILL on multiple VLANS using a Provetia "A" series IDS. We have a Proventia 604 that monitors 3 different segments but has only ONE RSKILL Interface. All these projects need different policies (one with SMTP and others for HTTP) and must have RSKILL capabilities.

Has any achieved this using just ONE RSKILL interface.

regards
Mustapha
----- Original Message ----- From: "Duncanson, Robert" <robert.duncanson@gb.unisys.com>
To: "Jose Morales" <mavenusa@yahoo.com>; <issforum@iss.net>
Sent: Friday, October 15, 2004 5:09 PM
Subject: RE: [ISSForum] Site Protector tools


Jose,

The only thing stored in the database is the audit trail, but not actual
sessions. You might be able to query the audit trail like this:

SELECT
ADT.AuditTrailID, ADT.AuditTime, ADT.Username, ADC.EventDesc,
ADI.ParamName, ADI.ParamValue
from AuditTrail as ADT
JOIN AuditInfo as ADI
on ADT.AuditTrailID = ADI.AuditTrailID
JOIN AuditEventCMD as ADC
on ADT.AuditEventCMDID = ADC.AuditEventCMDID
-- AuditEventCMDID 5 = console login, 6 = console logout
WHERE ADT.AuditEventCMDID IN (5, 6)


Cheers,
Robert


_______________________________________________
ISSForum mailing list
ISSForum@iss.net

TO UNSUBSCRIBE OR CHANGE YOUR SUBSCRIPTION, go to https://atla-mm1.iss.net/mailman/listinfo/issforum

To contact the ISSForum Moderator, send email to mod-issforum@iss.net

The ISSForum mailing list is hosted and managed by Internet Security Systems, 6303 Barfield Road, Atlanta, Georgia, USA 30328. 

_______________________________________________
ISSForum mailing list
ISSForum@iss.net

TO UNSUBSCRIBE OR CHANGE YOUR SUBSCRIPTION, go to 
https://atla-mm1.iss.net/mailman/listinfo/issforum

To contact the ISSForum Moderator, send email to mod-issforum@iss.net

The ISSForum mailing list is hosted and managed by Internet Security Systems, 
6303 Barfield Road, Atlanta, Georgia, USA 30328.

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [ISSForum] NIDS 7.0 Not Responding & /etc/init.d/realsecure script failed SunOS 5.8, D . Toloshny
Next by Date:  SV: [ISSForum] Signature tuning, Gotthardsson, Andreas (ISS Stockholm)
Previous by Thread:  [ISSForum] NIDS 7.0 Not Responding & /etc/init.d/realsecure script failed SunOS 5.8, D . Toloshny
Next by Thread:  RE: [ISSForum] RSKill Gateway configuration on Proventia, Ballerini, Jean Paul (ISS EMEA)
Indexes:  [Date] [Thread] [Top] [All Lists]