Cisco IPS-4255-K9 Installation Guide - Page 376
Cisco Intrusion Detection Event Exchange. Specifies the extensions to SDEE that are used by Cisco
UPC - 746320951096
View all Cisco IPS-4255-K9 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 376 highlights
Glossary blackhole block block interface BO BO2K bootloader Botnets Bpdu bypass mode Routing term for an area of the internetwork where packets enter, but do not emerge, due to adverse conditions or poor system configuration within a portion of the network. The ability of the sensor to direct a network device to deny entry to all packets from a specified network host or network. The interface on the network device that the sensor manages. BackOrifice. The original Windows back door Trojan that ran over UDP only. BackOrifice 2000. A Windows back door Trojan that runs over TCP and UDP. A small set of system software that runs when the system first powers up. It loads the operating system (from the disk, network, external compact flash, or external USB flash), which loads and runs the IPS application. For the AIM IPS, it boots the module from the network and assists in software installation and upgrades, disaster recovery, and other operations when the module cannot access its software. A collection of software robots, or bots, that run autonomously and automatically. The term is often associated with malicious software but it can also refer to the network of computers using distributed computing software. The term Botnet is used to refer to a collection of compromised computers (called Zombie computers) running software, usually installed through worms, Trojan horses, or back doors, under a common command-and-control infrastructure. Bridge Protocol Data Unit. Spanning-Tree Protocol hello packet that is sent out at configurable intervals to exchange information among bridges in the network. Mode that lets packets continue to flow through the sensor even if the sensor fails. Bypass mode is only applicable to inline-paired interfaces. C CA CA certificate CEF certificate cidDump CIDEE CIDS header certification authority. Entity that issues digital certificates (especially X.509 certificates) and vouches for the binding between the data items in a certificate. Sensors use self-signed certificates. Certificate for one CA issued by another CA. Cisco Express Forwarding. CEF is advanced, Layer 3 IP switching technology. CEF optimizes network performance and scalability for networks with large and dynamic traffic patterns, such as the Internet, on networks characterized by intensive Web-based applications, or interactive sessions. Digital representation of user or device attributes, including a public key, that is signed with an authoritative private key. A script that captures a large amount of information including the IPS processes list, log files, OS information, directory listings, package information, and configuration files. Cisco Intrusion Detection Event Exchange. Specifies the extensions to SDEE that are used by Cisco IPS systems. The CIDEE standard specifies all possible extensions that may be supported by Cisco IPS systems. The header that is attached to each packet in the IPS system. It contains packet classification, packet length, checksum results, timestamp, and the receive interface. GL-4 Cisco Intrusion Prevention System Appliance and Module Installation Guide for IPS 7.0 OL-18504-01