Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
453
Views
0
Helpful
1
Replies

I'm new in IPS, please help.

fatalXerror
Level 5
Level 5

‎02-28-2015 08:32 AM - edited ‎03-10-2019 06:20 AM

Hi Experts,

 

Good Day!

 

I have an ASA5585-X SSP IPS. Each module SSP and IPS has Ethernet ports, does those ports dedicated to the ASA and to the IPS or all of the ethernet ports are controlled by the ASA even though it is located in the IPS module?

 

Also, I'm going to tap another equipment into my IPS module, how can I configure a port in the IPS to act like just a tap mode or just to monitor all the traffic in that interface?

 

Thank you very much for the help.

 

Cheers,

 

 

niks

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎02-28-2015 09:59 AM

Please refer to the IPS Module Quick Start Guide for detailed info.

Generally speaking the IPS SSP management port is dedicated to the IPS. The Ethernet ports supplement the base ASA and are controlled by the ASA configuration.

The ASA IPS module isn't really designed to active as a passive IDS off of a tap. You can use it that way if the ASA is in transparent mode and the IPS policy set to monitor-only; but it would be a very unusual setup to have the high end 5585 with the optional IPS module configured that way.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card