Cisco IPS-4255-K9 - Intrusion Protection Sys 4255 Installation Manual page 373

Numerals
Triple Data Encryption Standard. A stronger version of DES, which is the default encryption method
3DES
for SSH version 1.5. Used when establishing an SSH session with the sensor. It can be used when the
sensor is managing a device.
A set of IEEE standards for the definition of LAN protocols.
802.x
A
authentication, authorization, and accounting. Pronounced "triple a." The primary and recommended
AAA
method for access control in Cisco devices.
Access Control Entry. An entry in the ACL that describes what action should be taken for a specified
ACE
address or protocol. The sensor adds/removes ACE to block hosts.
acknowledgement. Notification sent from one network device to another to acknowledge that some
ACK
event occurred (for example, the receipt of a message).
Access Control List. A list of ACEs that control the flow of data through a router. There are two ACLs
ACL
per router interface for inbound data and outbound data. Only one ACL per direction can be active at a
time. ACLs are identified by number or by name. ACLs can be standard, enhanced, or extended. You
can configure the sensor to manage ACLs.
The response of the sensor to an event. An action only happens if the event is not filtered. Examples
action
include TCP reset, block host, block connection, IP logging, and capturing the alert trigger packet.
The ACL created and maintained by ARC and applied to the router block interfaces.
active ACL
ASA. Combines firewall, VPN concentrator, and intrusion prevention software functionality into one
adaptive security
software image. You can configure the adaptive security appliance in single mode or multi-mode.
appliance
Application Inspection and Control engine. Provides deep analysis of web traffic. It provides granular
AIC engine
control over HTTP sessions to prevent abuse of the HTTP protocol. It allows administrative control
over applications that try to tunnel over specified ports, such as instant messaging, and tunneling
applications, such as gotomypc. It can also inspect FTP traffic and control the commands being issued.
Advanced Integration Module. A type of IPS network module installed in Cisco routers.
AIM IPS
OL-18504-01
Cisco Intrusion Prevention System Appliance and Module Installation Guide for IPS 7.0
G L O S S A R Y
GL-1