08-26-2009 09:32 AM - edited 03-10-2019 04:44 AM
I'm looking for a sample config for a IPS IDSM-2. I've been reviewing the configuration manual and love the excruciating detail, but would like to work from a sample config. Maybe just the basics to get started and then I can add stuff in later.
Any samples would be most appreciated.
Thanks,
Mike
08-26-2009 01:05 PM
I assume you're looking for the 6500/7600 config since the IDSM sensor configs are identical to the appliance sensors.
There's two ways you can run traffic throught a sensor, promiscious and in-line. Here's a simple promiscious config:
intrusion-detection module 9 management-port access-vlan 101 (puts the ISDM in slot 9 management port on VLAN 101)
intrusion-detection module 9 data-port 1 capture allowed-vlan 1001,1002,1003 (sends the contents of those VLANS to port 1 of the IDSM)
intrusion-detection module 9 data-port 1 capture
08-27-2009 06:26 AM
Thnaks for the info. I guess, with all the commands and detail in the configuration manual that there would be a lot more to it than this.
Mike
08-28-2009 06:23 AM
You need to decide the mode you want to run your IPS in? Promiscuous, Inline (VLAN/Interface pair) ?
Here are two examples from CCO:
Regards
Farrukh
08-31-2009 05:00 AM
Farrukh,
Excellent, perfect, just what I needed...Thanks!
Mike
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide