+ Reply to Thread
Results 1 to 9 of 9
  1. Junior Member
    Join Date
    Apr 2005
    Location
    texas
    Posts
    28

    Certifications
    ccna, ccna security, ccnp route, mcsa 2003, bachelor degree in IT
    #1

    Default 128MB.sdf or 256MB.sdf - SDM works with signature files

    Hello,

    I am studying for my ccna security exam and where can i find this file so i can test this out when setting up Intrusion prevention system. It is not on either my 7206, 3640, 3725 ios images and i really would like to test this out.

    thanks
    Last edited by dmb2002man; 03-08-2010 at 09:53 PM.
    Reply With Quote Quote  

  2. SS -->
  3. was here.
    Join Date
    Apr 2008
    Posts
    4,504
    #2
    They're packaged with SDM.
    Reply With Quote Quote  

  4. Junior Member
    Join Date
    Apr 2005
    Location
    texas
    Posts
    28

    Certifications
    ccna, ccna security, ccnp route, mcsa 2003, bachelor degree in IT
    #3
    Quote Originally Posted by tiersten View Post
    They're packaged with SDM.
    hello,

    I am using sdm 2.5 and i browse to the sdm folder and try to specify the 128MB.sdf but it gives me this error.

    Reply With Quote Quote  

  5. Senior Member
    Join Date
    Sep 2009
    Location
    Wales, UK
    Posts
    411

    Certifications
    CCENT, CCNA, CCNA Voice, CCNA Security, ITIL V3 Foundation, MCP, MCTS
    #4
    What version IOS are you trying to run IPS on? Cisco changed the IPS file format from version 4 to 5 around 12.4(11)T and as a result there appears to be inconsistencies with the definition file format expected with the SDM 2.5, the IOS and what signature definition files Cisco make available.

    When I was working on CCNA:S I got hold of a version 5 IPS file (IOS-S313-CLI.pkg) but agiain SDM would not accept it. The trick was to copy it to the routers flash then when selecting the file in SDM point if to the file in flash. SDM would then configure it all up fine. It may work with the sdf file.

    EDIT : SDM is end of life so having these inconsistencies is to be expected. One day I guess the exam will be updated to reflect it and adopt Cisco Configuration Professional.
    Last edited by mikem2te; 03-07-2010 at 05:01 PM.
    Reply With Quote Quote  

  6. was here.
    Join Date
    Apr 2008
    Posts
    4,504
    #5
    You need v5 IOS router IPS signatures. You need a service contract to download them from Cisco.com however.
    Reply With Quote Quote  

  7. Junior Member
    Join Date
    Apr 2005
    Location
    texas
    Posts
    28

    Certifications
    ccna, ccna security, ccnp route, mcsa 2003, bachelor degree in IT
    #6
    Quote Originally Posted by mikem2te View Post
    What version IOS are you trying to run IPS on? Cisco changed the IPS file format from version 4 to 5 around 12.4(11)T and as a result there appears to be inconsistencies with the definition file format expected with the SDM 2.5, the IOS and what signature definition files Cisco make available.

    When I was working on CCNA:S I got hold of a version 5 IPS file (IOS-S313-CLI.pkg) but agiain SDM would not accept it. The trick was to copy it to the routers flash then when selecting the file in SDM point if to the file in flash. SDM would then configure it all up fine. It may work with the sdf file.

    EDIT : SDM is end of life so having these inconsistencies is to be expected. One day I guess the exam will be updated to reflect it and adopt Cisco Configuration Professional.
    c3725-adventerprisek9-mz.124-15.T5.bin

    i just tried to copy to flash and it doesnt detect it. I did this command show flash and it shows the 128mb.sdf.


    System CompactFlash directory:
    File Length Name/status
    1 527849 128MB.sdf
    [527916 bytes used, 66580944 available, 67108860 total]
    65536K bytes of ATA System CompactFlash (Read/Write)
    Last edited by dmb2002man; 03-07-2010 at 07:51 PM.
    Reply With Quote Quote  

  8. was here.
    Join Date
    Apr 2008
    Posts
    4,504
    #7
    Quote Originally Posted by dmb2002man View Post
    c3725-adventerprisek9-mz.124-15.T5.bin

    i just tried to copy to flash and it doesnt detect it. I did this command show flash and it shows the 128mb.sdf.
    You need a v5 IOS router IPS signature file. The old SDF files don't work with 12.4.15T.
    Last edited by tiersten; 03-07-2010 at 11:47 PM.
    Reply With Quote Quote  

  9. Junior Member
    Join Date
    Apr 2005
    Location
    texas
    Posts
    28

    Certifications
    ccna, ccna security, ccnp route, mcsa 2003, bachelor degree in IT
    #8
    ok everyone i got it to accept the signature file in ios 7206. What i had to do was format disk0:

    copy tftp disk0:
    -then just fill in the rest of the info from your tftp server. After it copies then run show disk0: and you will see it. Then start sdm and it will find it.

    Reply With Quote Quote  

  10. Senior Member geezer's Avatar
    Join Date
    Apr 2007
    Location
    UK
    Posts
    136

    Certifications
    CCNA, CCNA Security. CCNA Voice
    #9
    Just stumbled across this post and having similar problems. I am using SDM v2.5 on GNS3 3725 (enterprise 12.4(15)T8 ) and obtained IOS-313-CLI.PKG and although it is detected there are just 3 basic signatures found and as such no filtering can take place. Can I confirm the size of the above IOS signature file with anyone who has used it first of all as mine is 7.6MB?

    Thanks in advance
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks