Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
480
Views
0
Helpful
3
Replies

Fail over of IPS

asfar.zaidi
Level 1
Level 1

‎11-26-2008 09:36 AM - edited ‎03-10-2019 04:23 AM

Hi Guys

I have Active/Stand by ASA Firewalls and I want to place 2 IPS between my 2 6500 Core Switches and ASA Firewalls for the Internet Traffic.

Can anyone propose any solution for a complete failove of IPS.

Regards/Asfar

Labels:
0 Helpful
3 Replies 3

mdreelan
Level 1
Level 1

‎12-01-2008 08:41 AM

Why not put both IPS inline? --for example-- put the active "inside" and "dmz" interfaces from ASA-ACTIVE through IPS#1 and the same for ASA-Standby - put this one's "inside" and "dmz" through IPS#2. If you put the IPS on the outside interface you risk having no visibility on all encrypted traffic.

0 Helpful

gwl7810cisco
Level 1
Level 1
In response to mdreelan

‎12-02-2008 12:21 AM

hi mdreelan ,can you give me a diagram about how to connect?

best regard

0 Helpful

mdreelan
Level 1
Level 1
In response to gwl7810cisco

‎12-02-2008 06:32 AM

Something like this.

Preview file
30 KB
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card