Cisco Cisco IPS 4520 Sensor White Paper
50
Intrusion Prevention
August 2012 Series
50
Step 14:
IDM applies your changes, and replies with a
Reboot required
message. Click
OK
.
Step 15:
Repeat the steps in Option 1 for the IPS module in the resilient
Cisco ASA firewall. There is no configuration synchronization between the
two devices like there is between the ASA firewalls.
two devices like there is between the ASA firewalls.
Option 2. Complete the basic configuration for IPS 4x00 Se-
ries Sensor appliance
ries Sensor appliance
Step 1:
On the distribution switch to which the sensor’s monitoring ports
are connected, in a command-line interface, enter the following:
interface
GigabitEthernet1/0/24
description
IPS4300 G0/0
no switchport
no ip address
no shutdown
interface
GigabitEthernet2/0/24
description
IPS4300 G0/1
no switchport
no ip address
no shutdown
monitor session 1 source interface
tenGigabitEthernet1/1/1,ten
GigabitEthernet2/1/1 both
monitor session 1 destination interface
GigabitEthernet1/0/24,
GigabitEthernet2/0/24
Step 2:
HTTPS to the management IP address on the Cisco IPS appliance
(Example: https://10.4.32.171) to launch IDM.
Step 3:
Navigate to
Configuration > Sensor Setup > Startup Wizard
, and
then click
Launch Startup Wizard
.
Step 4:
Review the Startup Wizard Introduction, and then click
Next
.
Step 5:
In
Sensor Setup
, configure the DNS Primary server address, time
zone, and NTP server address. If necessary for your time zone, select
Enable Summertime
.
Step 6:
Verify that the
Authenticated NTP
check box is clear, and then click
Next
.
Step 7:
On the
Interface Summary
page, click
Next.