Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1776
Views
0
Helpful
2
Replies

IPS desing for block traffic malicious.

kaiser2020
Level 1
Level 1

‎01-02-2020 12:30 PM - edited ‎02-21-2020 09:48 AM

Good morning, experts,
I have a question regarding the design level of how an IPS works with cisco catalys 2960 switches.
For an IPS to block malicious traffic on a catalys switch, is the switch port connected to the IPS configured as SPAN? Does the SPAN port have the ability to modify packets?
I have serious doubts about how the IPS influences the traffic.
 
I´m junior IT
Labels:
0 Helpful
2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

‎01-02-2020 02:17 PM

Not sure where this 2960 in your network, if this is your access switch deploying IPS is no use here.

 

You need to deploy IPS in the Core network where most of the traffic passing in and out to protect network.

 

I suggest reading some deployment guidelines, pros and cons ( inline vs tap mode) - you need different other components to be in the network. ( at the stage we are not sure how big network you have - if you have any network diagram share, and how many endpoints or users devices ?)

 

https://www.cisco.com/c/dam/en/us/td/docs/solutions/SBA/August2012/Cisco_SBA_BN_FirewallAndIPSDeploymentGuide-Aug2012.pdf

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

kaiser2020
Level 1
Level 1

‎01-03-2020 07:47 AM

hi,
I have a simple network, the firewall has several interfaces and does the routing.
I have more or less this scheme, 20 servers, 120 users.
I don't know where to put or connect the IPS to protect e.g. lateral attacks between users within the same VLAN
Preview file
12 KB
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card