Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1301
Views
0
Helpful
1
Replies

SourceFire 3D8250 : Network Disruption while adding Access control policy

stuartgeddes
Level 1
Level 1

‎04-22-2015 12:35 AM - edited ‎03-12-2019 05:40 AM

Hi guys,

I am managing 4 IPS 3D8250s using FireSight. I moved all the IPS appliances from default access control policy to a custom Access control policy. While moving the appliances to this policy ( adding the appliances under the tab "Targets" and by clicking "save and apply") I lose access to the network. The outage is around 5-10 mins. Is this a normal behavior ?? 

The IPS appliances are configured as L2 fail-open. All the traffic passes through these Appliances.

IPS : SourceFire 3D8250
Version : 5.3.0.3

FireSight : Defense Center 1500
Version : 5.3.1.1

Appreciate your help !!

Thanks and Regards,
Stuart

Labels:
0 Helpful
1 Reply 1

vrgaikwad
Level 1
Level 1

‎04-28-2015 10:43 PM

Hi Stuartgeddes,

Normally there wont be any network outage due to access control policy installation but during policy installation sourcefire appliances do not inspect the traffic and bypass it but I have not observed network outage. I have heard that Firewall Fail-over can happened due to Access control policy installation if your sensor is directly connected to firewall. Due to load Defense center console can become unresponsive for some time.
 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card