Cisco IPS-4255-K9 Installation Guide - Page 387
passive, fingerprinting, PASV Port Spoof, patch release, PIX Firewall, Post-ACL, Pre-ACL
UPC - 746320951096
View all Cisco IPS-4255-K9 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 387 highlights
Glossary passive fingerprinting Passive OS Fingerprinting PASV Port Spoof PAT patch release PAWS PCI PDU PEP PER PFC PID ping PIX Firewall PKI POST Post-ACL Pre-ACL Act of determining the OS or services available on a system from passive observation of network interactions. The sensor determines host operating systems by inspecting characteristics of the packets exchanged on the network. An attempt to open connections through a firewall to a protected FTP server to a non-FTP port. This happens when the firewall incorrectly interprets an FTP 227 passive command by opening an unauthorized connection. Port Address Translation. A more restricted translation scheme than NAT in which a single IP address and different ports are used to represent the hosts of a network. Release that addresses defects identified in the update (minor, major, or service pack) binaries after a software release (service pack, minor, or major update) has been released. Protection Against Wrapped Sequence. Protection against wrapped sequence numbers in high performance TCP networks. See RFC 1323. Peripheral Component Interface. The most common peripheral expansion bus used on Intel-based computers. protocol data unit. OSI term for packet. See also BPDU and packet. Cisco Product Evolution Program. PEP is the UDI information that consists of the PID, the VID, and the SN of your sensor. PEP provides hardware version and serial number visibility through electronic query, product labels, and shipping items. packed encoding rules. Instead of using a generic style of encoding that encodes all types in a uniform way, PER specializes the encoding based on the date type to generate much more compact representations. Policy Feature Card. An optional card on a Catalyst 6000 supervisor engine that supports VACL packet filtering. Product Identifier. The orderable product identifier that is one of the three parts of the UDI. The UDI is part of the PEP policy. packet internet groper. Often used in IP networks to test the reachability of a network device. It works by sending ICMP echo request packets to the target host and listening for echo response replies. Private Internet Exchange Firewall. A Cisco network security device that can be programmed to block/enable addresses and ports between networks. Public Key Infrastructure. Authentication of HTTP clients using the clients X.509 certificates. Power-On Self Test. Set of hardware diagnostics that runs on a hardware device when that device is powered up. Designates an ACL from which ARC should read the ACL entries, and where it places entries after all deny entries for the addresses being blocked. Designates an ACL from which ARC should read the ACL entries, and where it places entries before any deny entries for the addresses being blocked. OL-18504-01 Cisco Intrusion Prevention System Appliance and Module Installation Guide for IPS 7.0 GL-15