Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5294
Views
0
Helpful
1
Replies

how to use Cisco ASA5510 as an IPS

pwc_mexico
Level 1
Level 1

‎03-23-2010 04:01 PM - edited ‎03-10-2019 04:56 AM

We have a Cisco ASA5510 w

ith ASA-SSM-10 module but we´d like to know how to configure it as

an IPS. We have it in the same network but in a simulate enviroment 2 different network segments.

Labels:
0 Helpful
1 Reply 1

Panos Kampanakis
Cisco Employee
Cisco Employee

‎03-24-2010 02:34 PM

You need the ASA to pass traffic through the IPS as explained in http://supportforums.cisco.com/docs/DOC-5668

Note that since this is a different module you will need something like

access-list ips-acl extended permi ip any any 

class-map ips-class
 match access-list ips-acl

policy-map global_policy
 class ips-class
  ips fail-open

service-policy global_policy global

Then you can start configuring the ips following its config guide to fire on signatures etc.

I hope it helps.

PK

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card