https://community.cisco.com/t5/network-security/aim-ips-k9-with-2811/m-p/1062987#M78218 <P>Good day,</P><P></P><P>I am trying to find config. example to enable inline monitoring on the AIM card.</P><P></P><P>AIM-IPS-K9 with 2811</P><P></P><P>Also, I would like to bypass all the VoIP traffic from traversing the AIM card. I think this can be accomplished with an access list on the Gig interface of the AIM card.</P><P></P><P>Having some issues finding info. on AIM cards.</P><P></P><P>Thanks,</P><P></P> Sun, 10 Mar 2019 11:23:55 GMT cmhcsecurity 2019-03-10T11:23:55Z https://community.cisco.com/t5/network-security/aim-ips-k9-with-2811/m-p/1062987#M78218 <P>Good day,</P><P></P><P>I am trying to find config. example to enable inline monitoring on the AIM card.</P><P></P><P>AIM-IPS-K9 with 2811</P><P></P><P>Also, I would like to bypass all the VoIP traffic from traversing the AIM card. I think this can be accomplished with an access list on the Gig interface of the AIM card.</P><P></P><P>Having some issues finding info. on AIM cards.</P><P></P><P>Thanks,</P><P></P> Sun, 10 Mar 2019 11:23:55 GMT https://community.cisco.com/t5/network-security/aim-ips-k9-with-2811/m-p/1062987#M78218 cmhcsecurity 2019-03-10T11:23:55Z https://community.cisco.com/t5/network-security/aim-ips-k9-with-2811/m-p/1062988#M78220 <HTML><HEAD></HEAD><BODY><P><WAN interface=""> </WAN></P><P> ids-service-module monitoring inline access-list myacl</P><P></P><P>I actually use this command on the data sub-interface (and that bypasses voip --although there are voip specific signatures --) . I did have some problems in a few tests I ran trying to use the IPS inline and use and ACL, so please let me know your results.</P><P>Complete Interface Example:</P><P>interface FastEthernet0/0.90</P><P> description DATA</P><P> encapsulation dot1Q 90 native</P><P> ip address 10.5.90.1 255.255.255.0</P><P> ip helper-address 172.17.5.20</P><P> ids-service-module monitoring inline</P><P></P><P></P><P></P></BODY></HTML> Mon, 01 Dec 2008 16:35:21 GMT https://community.cisco.com/t5/network-security/aim-ips-k9-with-2811/m-p/1062988#M78220 mdreelan 2008-12-01T16:35:21Z https://community.cisco.com/t5/network-security/aim-ips-k9-with-2811/m-p/1062989#M78221 <HTML><HEAD></HEAD><BODY><P>FYI:</P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/docs/security/ips/6.2/configuration/guide/cli/cli_aim.html#wp1044942" target="_blank">http://www.cisco.com/en/US/docs/security/ips/6.2/configuration/guide/cli/cli_aim.html#wp1044942</A></P><P></P><P>Regards</P><P></P><P>Roberto Taccon</P></BODY></HTML> Tue, 16 Dec 2008 08:50:31 GMT https://community.cisco.com/t5/network-security/aim-ips-k9-with-2811/m-p/1062989#M78221 ROBERTO TACCON 2008-12-16T08:50:31Z https://community.cisco.com/t5/network-security/aim-ips-k9-with-2811/m-p/1062990#M78222 <HTML><HEAD></HEAD><BODY><P>May I ask you the following:</P><P></P><P>- what happens to inline traffic when you exceed the declared throughput ? Is traffic dropped or is it forwarded without IPS inspection ?</P><P></P><P></P></BODY></HTML> Tue, 16 Dec 2008 08:57:49 GMT https://community.cisco.com/t5/network-security/aim-ips-k9-with-2811/m-p/1062990#M78222 ROBERTO TACCON 2008-12-16T08:57:49Z https://community.cisco.com/t5/network-security/aim-ips-k9-with-2811/m-p/1062991#M78223 <HTML><HEAD></HEAD><BODY><P>Traffic that doesn't get analyzed by the sensor because of exceeding throughput will be dropped.</P><P></P><P>I see that you are using an AIM-IPS-K9.</P><P>If you think you will be near the performance limits of the AIM, then you might consider purchasing an NME instead which has higher performance.</P><P></P><P>You might also consider analyzing the type of traffic going through your router and see if you want to permit some of the traffic through without being analyzed by the AIM.</P><P>You can create an access-list to permit that traffic you do not want analyzed and the router will route it through without sending it to the AIM. Simply create the access-list and add the access-list to the end of the ids-service-module command:</P><P>ids-service-module monitoring inline access-list 101</P><P></P></BODY></HTML> Tue, 16 Dec 2008 16:22:33 GMT https://community.cisco.com/t5/network-security/aim-ips-k9-with-2811/m-p/1062991#M78223 marcabal 2008-12-16T16:22:33Z https://community.cisco.com/t5/network-security/aim-ips-k9-with-2811/m-p/1062992#M78224 <HTML><HEAD></HEAD><BODY><P>Thansk in advance for the reply.</P><P></P><P>I can't find an answer to the following q:</P><P></P><P>Need to know the performance about the Cisco router 28XX.</P><P></P><P>In particular I've found on cisco web site for the Cisco router 2821 the following info:</P><P></P><P>Firewall performance : 208 Mbps</P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5708/ps5710/ps1018/C78-345384-04_CiscoIntegratedFirewallSolutions.html" target="_blank">http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5708/ps5710/ps1018/C78-345384-04_CiscoIntegratedFirewallSolutions.html</A></P><P></P><P></P><P>Routing PPS (64 Byte): 170,000 (87.04 Mbps)</P><P><A class="jive-link-custom" href="http://www.cisco.com/web/partners/tools/quickreference/index.html" target="_blank">http://www.cisco.com/web/partners/tools/quickreference/index.html</A></P><P></P><P></P><P>Can you help me cause I can't understand why the firewall performance are better than the routing performance ?</P><P></P><P></P><P>Thanks in advance, best regards</P><P></P><P></P></BODY></HTML> Tue, 16 Dec 2008 16:42:54 GMT https://community.cisco.com/t5/network-security/aim-ips-k9-with-2811/m-p/1062992#M78224 ROBERTO TACCON 2008-12-16T16:42:54Z