cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
661
Views
0
Helpful
2
Replies

Idsm 2- IPS Deployment

I would like to configure an IDSM-2 in inline mode, I am having trouble about the deployment, I have a couple of questions;

1. If you configure 2 VLANs (existing) as VLAN pairs does this mean the exist connection between the 2 VLANs is broken?

ie they can only communicate to each other via IPS.

2. Where is the best place to deploy this type of IPS?

Everyone's tags (3)
2 REPLIES 2
Highlighted

Idsm 2- IPS Deployment

Hello

1. If configure properly, it will definitely not break any connectivity (its a bump in the wire). Of course if some traffic is denied by any IPS signature itself, that is a different matter. Please see this example for more help:

http://www.cisco.com/en/US/products/sw/secursw/ps2113/products_configuration_example09186a0080876d9f.shtml

2. Inline mode is deployed where you want proactive protection and the the IPS box you have has sufficient throughput and other resources that will allow it to monitor that segment of your network (or multiple segments for that matter..)

Regards

Farrukh

Rising star

Idsm 2- IPS Deployment

CreatePlease to create content
Content for Community-Ad
July's Community Spotlight Awards