Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
453
Views
0
Helpful
3
Replies

ips 4255 interface pair

jcin
Level 1
Level 1

‎10-17-2005 05:30 PM - edited ‎03-10-2019 01:42 AM

Hi,

I'm deploying IPS 4255 (5.0.4) at my customer site. I put the IPS between the internet router and firewall.

Gi0/2 connected to firewall and Gi0/3 connected to router. Is it correct setup?

We use default signature configuration.

After deployed the user can't browse the internet and we saw that there are some of the customer public IP listed in the Actived Host Block. Is it default behavior?

Thank you.

Janto

Labels:
0 Helpful
3 Replies 3

bbaley
Level 3
Level 3

‎10-21-2005 10:09 AM

On appliances, the sensing interfaces are disabled by default. On modules, the sensing interfaces are always enabled and cannot be disabled. The sensing interface does not have an IP address assigned to it and is therefore invisible to attackers. This lets the sensor monitor the data stream without letting attackers know they are being watched.

http://www.cisco.com/en/US/products/sw/secursw/ps2113/products_configuration_guide_chapter09186a0080459225.html

0 Helpful

a.kiprawih
Level 7
Level 7

‎10-25-2005 01:06 AM

Hi Janto,

One of the action you can take is to put the public IP used by your customer to go out to the Internet under excluded IP that IDS will never block.

Some signatures by default are set to perform blocking action when it sees 'attack'. This could be why the public IP was blocked as it matches criteria falls under those signatures, e.g spoofing.

Cheers!

AK

0 Helpful

jcin
Level 1
Level 1
In response to a.kiprawih

‎10-25-2005 05:34 PM

Hi,

How to exclude my public IP addresses?

Is it by configuring the event action rules?

Thank you.

Janto

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card