Device

Tipping Point examine-ips-logs tippingpoint-alarm

Tipping Point The Scripts These PERL scripts help manage our Tipping Pointdevices. Examine-IPS-Logs examines yesterday's syslog, extracting Tipping Point messages and looking for *outbound* blocked events, i.e. internally infected hosts which are attempting to phone home to the mothership or are launching attacks. It sends mail to appropriately interested recipients. TippingPoint-Alarm takes a list of TippingPoint IPS as arguments and scans various MIB variables for hardware problems, producing a report -- if it detects issues, it notifies via e-mail.