IDS mailing list archives
Re: IDS responses
From: "Raffael Marty" <raffy () raffy ch>
Date: Sat, 16 Nov 2002 17:47:44 +0100
Can anyone explain or direct me to an explanation of the SNMP Trap's use in active responses of intrusion detection systems?
See answer below
SNMP Trap; Reconfigure network devices?
SNMP Traps can be used on a sensor to send asynchronous messages to a console. These messages are not sent to network devices. The console on its end might then reconfigure the network device (probably via SNMP again, but not TRAPS, but an SNMP SET). I think this is all the magic that is behind this.
As seen above the SNMP Trap explanation is not satisafctory. I have tried to read several RFCs
What did you expect to find in the RFCs??? Regards Raffy
Current thread:
- IDS responses marca369 (Nov 16)
- Re: IDS responses Raffael Marty (Nov 17)
- <Possible follow-ups>
- Re: IDS responses marca369 (Nov 19)
- RE: IDS responses Kohlenberg, Toby (Nov 22)