Filter
Top Products
Glossary
GL-5
Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1
OL-19892-01
certificate
Digital representation of user or device attributes, including a public key, that is signed with an
authoritative private key.
cidDump
A script that captures a large amount of information including the IPS processes list, log files, OS
information, directory listings, package information, and configuration files.
CIDEE
Cisco Intrusion Detection Event Exchange. Specifies the extensions to SDEE that are used by Cisco
IPS systems. The CIDEE standard specifies all possible extensions that may be supported by Cisco IPS
systems.
CIDS header
The header that is attached to each packet in the IPS system. It contains packet classification, packet
length, checksum results, timestamp, and the receive interface.
cipher key
The secret binary data used to convert between clear text and cipher text. When the same cipher key is
used for both encryption and decryption, it is called symmetric. When it is used for either encryption
or decryption (but not both), it is called asymmetric.
Cisco IOS
Cisco system software that provides common functionality, scalability, and security for all products
under the CiscoFusion architecture. Cisco IOS allows centralized, integrated, and automated
installation and management of internetworks while supporting a wide variety of protocols, media,
services, and platforms.
CLI
command-line interface. A shell provided with the sensor used for configuring and controlling the
sensor applications.
CollaborationApp
A component of the IPS. Shares information with other devices through a global correlation database
to improve the combined efficacy of all the devices.
command and
control interface
The interface on the sensor that communicates with the IPS manager and other network devices. This
interface has an assigned IP address.
community
In SNMP, a logical group of managed devices and NMSs in the same administrative domain.
composite attack
Spans multiple packets in a single session. Examples include most conversation attacks such as FTP,
Telnet, and most Regex-based attacks.
connection block
ARC blocks traffic from a given source IP address to a given destination IP address and destination
port.
console
A terminal or laptop computer used to monitor and control the sensor.
console port
An RJ45 or DB9 serial port on the sensor that is used to connect to a console device.
control interface
When ARC opens a Telnet or SSH session with a network device, it uses one of the routing interfaces
of the device as the remote IP address. This is the control interface.
control transaction
CT. An IPS message containing a command addressed to a specific application instance. Control
transactions can be sent between a management application and an IPS sensor, or between applications
on the same IPS sensor. Example control transactions include start, stop, getConfig.
Control Transaction
Server
A component of the IPS. Accepts control transactions from a remote client, initiates a local control
transaction, and returns the response to the remote client.
Control Transaction
Source
A component of the IPS. Waits for control transactions directed to remote applications, forwards the
control transactions to the remote node, and returns the response to the initiator.