https://community.cisco.com/t5/network-security/idsm-2-promiscuous-mode/m-p/667998#M87735 <P>I would like my IDSM-2 to run in a Promiscuous Mode ( and not INLINE mode)</P><P></P><P>How can i configure it so that it works on the - " Block Nothing,Monitor Everything" principle.</P><P></P><P>I need the blade to "Never" block the upstream devices like routers and Firewalls.</P><P></P><P>By the way,how will the IDSM running in Promiscuous Mode even "know" of upstream routers and other network devices.</P><P></P><P>Thanks !!!</P> Sun, 10 Mar 2019 10:26:04 GMT rpsrekhi3 2019-03-10T10:26:04Z https://community.cisco.com/t5/network-security/idsm-2-promiscuous-mode/m-p/667998#M87735 <P>I would like my IDSM-2 to run in a Promiscuous Mode ( and not INLINE mode)</P><P></P><P>How can i configure it so that it works on the - " Block Nothing,Monitor Everything" principle.</P><P></P><P>I need the blade to "Never" block the upstream devices like routers and Firewalls.</P><P></P><P>By the way,how will the IDSM running in Promiscuous Mode even "know" of upstream routers and other network devices.</P><P></P><P>Thanks !!!</P> Sun, 10 Mar 2019 10:26:04 GMT https://community.cisco.com/t5/network-security/idsm-2-promiscuous-mode/m-p/667998#M87735 rpsrekhi3 2019-03-10T10:26:04Z https://community.cisco.com/t5/network-security/idsm-2-promiscuous-mode/m-p/667999#M87736 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>You can find how to configure IDSM-2 to run promiscuous mode here.</P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_guide_chapter09186a008055df92.html#wp1030752" target="_blank">http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_guide_chapter09186a008055df92.html#wp1030752</A></P><P></P><P>From there, you can find IOS vs. CatOS configuration as well as SPAN vs. VACL.</P><P></P><P>Once that is done, you can find configuration guide here regarding IPS software. I will list both CLI and IDM in case you prefer one over the other...</P><P></P><P>CLI -</P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_guide_chapter09186a008055df7d.html#wp1033699" target="_blank">http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_guide_chapter09186a008055df7d.html#wp1033699</A></P><P></P><P>IDM -</P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_guide_chapter09186a00804cf4c2.html#wp1031960" target="_blank">http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_guide_chapter09186a00804cf4c2.html#wp1031960</A></P><P></P><P>In promiscuous mode, unless you configure blocking with blocking device, it will never block anything by default. Even with blocking, you can configure never-block addresses.</P><P></P><P>CLI -</P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_guide_chapter09186a008055df77.html#wp1031471" target="_blank">http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_guide_chapter09186a008055df77.html#wp1031471</A></P><P></P><P>IDM -</P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_guide_chapter09186a00804d1374.html#wp1037905" target="_blank">http://www.cisco.com/en/US/products/hw/vpndevc/ps4077/products_configuration_guide_chapter09186a00804d1374.html#wp1037905</A></P><P></P><P></P><P>IDSM will not know about which is what (upstream routers and other network devices) unless you specify them in 'never block' or 'blocking devices'</P><P></P><P>Thank you.</P><P></P><P></P><P></P><P>Edward</P></BODY></HTML> Wed, 24 Jan 2007 02:10:27 GMT https://community.cisco.com/t5/network-security/idsm-2-promiscuous-mode/m-p/667999#M87736 edwakim 2007-01-24T02:10:27Z