Preview Tool

Cisco Bug: CSCtb59071 - IPS - 7.0 CLI Configuration Guide - Understanding Blocking

Last Modified

Feb 22, 2014

Products (10)

  • Cisco IPS 4200 Series Sensors
  • Cisco Catalyst 6500 Series Intrusion Detection System (IDSM-2) Services Module
  • Cisco IPS 4255 Sensor
  • Cisco IPS Sensor Software Version 7.0
  • Cisco IPS 4260 Sensor
  • Cisco IPS 4270-20 Sensor
  • Cisco Intrusion Prevention System Network Module
  • Cisco IPS 4240 Sensor
  • Cisco ASA Advanced Inspection and Prevention (AIP) Security Services Module
  • Cisco Integrated Services Routers Intrusion Prevention System Module

Known Affected Releases


Description (partial)

The IPS 7.0 Configuration Guide does not implicitly specify that Network blocks are not supported with Security Appliances.

The ASA itself does not support the "shun" command for blocking Networks (or Connections) at this stage. The "shun" command of the ASA is only capable of blocking Hosts.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.