Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
863
Views
0
Helpful
4
Replies

Any downtime if you reset the sensor

Go to solution
Wai Nam Mao
Level 1
Level 1

‎05-26-2013 08:35 PM - edited ‎03-10-2019 05:58 AM

Hi All

     I am wondering if i reboot the sensor, any downtime will caused?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
tiwang
Level 3
Level 3
In response to Wai Nam Mao

‎05-26-2013 10:43 PM

hi again

Try to take a look here - this is a config example from ver 6.0 but doesn't matter

http://www.cisco.com/en/US/docs/security/ips/6.0/configuration/guide/cli/cliSSM.html#wp1038548

depends on the asa policy you have defined would I say (and - do you have a ASA in HA mode?) - in step 7 here is shown the options you have:

Step 1 Log in to the adaptive security appliance.

Step 2 Enter configuration mode. 

asa# configure terminal

Step 3 Create an IPS access list. 

asa(config)# access-list IPS permit ip any any

Step 4 Define the IPS traffic class. 

asa(config)# class-map class_map_name


asa(config-cmap)# match {access-list | any}

Step 5 Define the IPS policy map. 

asa(config-cmap)# policy-map policy_map_name

Step 6 Identify the class map from Step 5 to which you want to assign an action. 

asa(config-pmap)# class class_map_name

Step 7 Assign traffic to the AIP SSM. 

asa(config-pmap-c)# ips {inline | promiscuous} {fail-close | fail-open}

Step 8 Define the IPS service policy. 

asa(config-pmap-c)# service-policy policymap_name [global | interface interface_name]

Step 9 Verify the settings.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Wai Nam Mao
Level 1
Level 1

‎05-26-2013 08:57 PM

Platform: ASA-SSM-10

0 Helpful

Go to solution
tiwang
Level 3
Level 3
In response to Wai Nam Mao

‎05-26-2013 10:34 PM

hi wai

depends on your ips policy - if you bypass it or block traffic. If you have the ASA's in a HA cluster this will cause a fail-over

best regards /ti

0 Helpful

Go to solution
Wai Nam Mao
Level 1
Level 1
In response to tiwang

‎05-26-2013 10:37 PM

so if i just use the AIP as sniffer only

I can reset the AIP safely?

am i correct?

0 Helpful

Go to solution
tiwang
Level 3
Level 3
In response to Wai Nam Mao

‎05-26-2013 10:43 PM

hi again

Try to take a look here - this is a config example from ver 6.0 but doesn't matter

http://www.cisco.com/en/US/docs/security/ips/6.0/configuration/guide/cli/cliSSM.html#wp1038548

depends on the asa policy you have defined would I say (and - do you have a ASA in HA mode?) - in step 7 here is shown the options you have:

Step 1 Log in to the adaptive security appliance.

Step 2 Enter configuration mode. 

asa# configure terminal

Step 3 Create an IPS access list. 

asa(config)# access-list IPS permit ip any any

Step 4 Define the IPS traffic class. 

asa(config)# class-map class_map_name


asa(config-cmap)# match {access-list | any}

Step 5 Define the IPS policy map. 

asa(config-cmap)# policy-map policy_map_name

Step 6 Identify the class map from Step 5 to which you want to assign an action. 

asa(config-pmap)# class class_map_name

Step 7 Assign traffic to the AIP SSM. 

asa(config-pmap-c)# ips {inline | promiscuous} {fail-close | fail-open}

Step 8 Define the IPS service policy. 

asa(config-pmap-c)# service-policy policymap_name [global | interface interface_name]

Step 9 Verify the settings.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card