Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
971
Views
0
Helpful
1
Replies

IPS Promiscous VLAN Groups

evfodor
Community Member

‎05-17-2013 05:48 AM - edited ‎03-10-2019 05:57 AM

Hi Team,

I'm planning to create the following IPS desing, but I'm not sure if it is working/configurable or not.

We have 2 IPSs (because of redundancy) running 7.1, in promiscouos mode. We have 2 routers/switches (again in redundancy) - has the same vlans configured on the swithces. VLAN 200 - this is VLAN-OFF on the diagram and VLAN 100 which is VLAN SR.

IPS is connecting to SW/RT-01 on G0/0 on trunk, and G0/1 to RT/Sw-02 on a trunk.

What i know is that i should create VLAN groups on IPSs:

physical-interfaces GigabitEthernet0/0

subinterface 1

vlan1 100

subinterface 2

vlan1 200

But i'm not sure about the other interface:

physical-interfaces GigabitEthernet0/1

subinterface 3

vlan1 100

subinterface 4

vlan1 200

Picture1.png

Does it work?

Thanks in advance!

Eva

Then need to add those to the correct virtual sensors:

Vs0:

Gigabitethernet0/0:1

Gigabitethernet0/1:3

vs1

Gigabitethernet0/0:2

Gigabitethernet0/1:4

1 person had this problem
Labels:
0 Helpful
1 Reply 1

rhermes
Level 11
Level 11

‎06-11-2013 12:24 PM

You do not need to run two virtual sensors in order to do this. Your signature policy will be the same for both sensors.

If you are feeding both sensors a promiscious feed from the switches, the sensors do not need to be configured for subinterfaces.

- Bob

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card