Cisco Cisco ASA 5555-X Adaptive Security Appliance Guía De Instalación
8
5
Configuring Basic IPS Module Network Settings
ASA 5510 and Higher
Use the ASDM Startup Wizard to configure basic IPS network settings. These settings are saved to the
IPS configuration, not the ASA configuration.
IPS configuration, not the ASA configuration.
Step 1
Choose Wizards > Startup Wizard.
Step 2
Click Next to advance through the initial screens until you reach the IPS Basic Configuration
screen.
screen.
Note
(ASA 5512-X through ASA 5555-X) If you do not see the IPS Basic Configuration
screen in your wizard, then the IPS module is not running. See the “(ASA 5512-X
through ASA 5555-X; May Be Required) Booting the Software Module” section on
page 10, and then repeat this procedure after you install the module.
screen in your wizard, then the IPS module is not running. See the “(ASA 5512-X
through ASA 5555-X; May Be Required) Booting the Software Module” section on
page 10, and then repeat this procedure after you install the module.
Step 3
In the Network Settings area, configure the following:
–
IP Address—The management IP address. By default, the address is 192.168.1.2, on the same
network as the default ASA management IP address. See the “Connecting the ASA IPS
Management Interface” section on page 3 to understand the requirements for your network.
network as the default ASA management IP address. See the “Connecting the ASA IPS
Management Interface” section on page 3 to understand the requirements for your network.
–
Subnet Mask—The subnet mask for the management IP address.
–
Gateway—The IP address of the next hop router. See the “Connecting the ASA IPS
Management Interface” section on page 3 to understand the requirements for your network.
The default setting of the ASA management IP address will not work.
Management Interface” section on page 3 to understand the requirements for your network.
The default setting of the ASA management IP address will not work.
–
HTTP Proxy Server—(Optional) The HTTP proxy server address. You can use a proxy server
to download global correlation updates and other information instead of downloading over
the Internet.
to download global correlation updates and other information instead of downloading over
the Internet.
–
HTTP Proxy Port—(Optional) The HTTP proxy server port.
–
DNS Primary—(Optional) The primary DNS server address. You need a DNS server to
communicate with the update server over the Internet.
communicate with the update server over the Internet.
Step 4
In the Management Access List area, enter the following:
a.
Enter the IP address for the management host network.
b.
Choose the subnet mask from the drop-down list.
c.
Click Add to add these settings to the Allowed Hosts/Networks list.