Intrusion Prevention

  • 1.  [help] ISG with IDP Module Detection Error

    Posted 05-07-2009 01:47
    Hi,  We have ISG-2000 with IDP module installed in it. I've update firewall with IOS (nsISG2000.6.2.0-IDP1.r2.0. Eventually IOS update procedure went fine but as soon I restarted I’ve received following information/error on my console. I'm not sure what action point needs to do on it, so i need your expert suggestion. However still I didn’t try to add firewall in NSM to implement IDP, as NSM is not yet activate so I’m not sure below information has any impact. 

     Here is logs I’ve received.

     

     Security Module 3 is ready
    All Security Modules init done
    IDP application is not supported, please make sure that the device is in Advance mode,
    has IDP license installed, ipv6 disabled, jumbo_frame disable, and has 2G memory.
    Done
    Received all run-time-object from peer.

      Firewall is already updated with IDP license; I’m confirming it has nothing to do with licenses.  What does “Advance Mode” means here? Kindly help me out.  


  • 2.  RE: [help] ISG with IDP Module Detection Error

    Posted 05-07-2009 02:28

    Hi,

    "advanced mode" is a license that includes IDP inspection and extended capabilities.

    Copy here the output of a "get license" to verify the situation.

     

    Ciao

    Daniele



  • 3.  RE: [help] ISG with IDP Module Detection Error

    Posted 05-07-2009 02:36

    Thanks Dan for reply, Here is output

     

    get license-key

    advanced_key        : 2dCatAYClEdqGctAo8P7KqU1ZwF3eeVOFJPHJJJmOZ1Btg0DRC
                          XTESRvUj63kjjhZhWs4S9oiXd9ao0hdMgo6yyt0SgslDiEEBUd
                          XkDC0S7MO3irEMhdnztgq2tjzrbmBV5MxVamH/
                          wuXY5c3X4+yA2Bc0Lwo5aiHUnZPbpZ5c8uJTrGpzGon2QrRtZg
                          +h88DWLMDITUfBVhwIEIyNO91083ubtDSSEzY6NzODg1Zgqpwv
                          aVD30Ut0pV9QKp+hi5xOIF0DyVx1F559g/
                          BgJ7JV7lhlN9EMrzD8420hroQHj5c3uW4j1P4GbSYUs2SG6gg0
                          oP2KYFLHYvrQUj3WzMVTA==

    idp_sm_key          : 2LuVPCx+hA8+nEMdUSQyANn/DT/
                          hqX3DUWX0gsgRIlU41fWsQ0hElIqWAUZ1bMq4iWmzg2MQ1DHQf
                          hb4X9a/Bd/
                          +kM74Cgdm8dDfYl9i0J63DdI9Quq04+vSiLESFLg0e0kzg2gH9
                          uzNIaDF0Ab0Qcic35YOnQFe0lyuD5A7Y+WFbXQr1Z90bh6lkRv
                          Ml90OwXn+vtLhz9CTxvtv5QB0MVZVAWOj8BLM/
                          oUmqFRh7JrROMRwG3LdfRIp7sdF9lsLOfEUG4qL+6AuslknehP
            6uMqYXeQnoqLBic05n3wnZJB0k4ZM0YY7fNPVK9yabl8fTwEm7
                          eMmK5l/zmEtW0t+caA==

    Model:              Advanced
    Sessions:           500064 sessions
    Capacity:           unlimited number of users
    NSRP:               ActiveActive
    VPN tunnels:        10000 tunnels
    Vsys:               None
    Vrouters:           3 virtual routers
    Zones:              34 zones
    VLANs:              2000 vlans
    Drp:                Enable
    Deep Inspection:    Enable
    Deep Inspection Database Expire Date: Disable
    Signature pack:     Signature update key is missing
    IDP:                Disable
    AV:                 Enable(1)
    Anti-Spam:          Disable(0)
    Url Filtering:      Disable

    Update server url: nextwave.netscreen.com/key_retrieval
    License key auto update : Disabled
    Auto update interval : 0 days
    ===============================================================================



  • 4.  RE: [help] ISG with IDP Module Detection Error

    Posted 05-07-2009 02:59

    @AffanRayf wrote:

    IDP:                Disable

     

    The problem is here: the IDP is disabled.

     

    I have to correct my previous statement: the "advanced mode" is required but doesn't include the IDP license.

     

    So I think you should double check that you have a valid IDP license and install it on the device.

     

    Ciao 🙂

    Daniele

     



  • 5.  RE: [help] ISG with IDP Module Detection Error

    Posted 05-07-2009 03:14

    Thanks, I'm working on. I'll update you soon.



  • 6.  RE: [help] ISG with IDP Module Detection Error

    Posted 05-07-2009 07:09

    Hi Affan,

    forgot to say, you should also check that the device has 2GB memory and that IPv6 and jumbo frame are disabled.

     

    Please check the output of:

    get sys

    get env

     

    Feel free to copy the output here so I can check.

     

    Ciao 🙂

    Daniele