i have new requirement for an IDS.
currently running a 2xT1 on a cisco 1841 with ios= advanced enterprise services 12.4.25a.
only requirement i need is crypto feature for ipsec vpn.
i saw this document:
Cisco IOS Firewall Intrusion Detection System
http://www.cisco.com/en/US/docs/ios/12_0t/12_0t5/feature/guide/ios_ids.html
when i try “router conf>ip audit”
i get a ‘not recognized command’ which i guess is b/c its not part of the 12.4 features.
i tried the ios navigator and found i might need c1841-advsecurityk9-mz.151-2.T.bin HOWEVER when using the tool i requested BOTH IP SEC & IDS no products were found.
questions:
1. what do i need for an ids with my 1841? ios? software based (like snort?) is it true i must have a network tap or a switch with a span port?
2. is there an ios that has both crypto and IDS?
thanks.
