Cisco Cisco IPS 4255 Sensor 情報ガイド
The Cisco Incident Control System includes embedded software and support from Trend Micro.
Point of sale and registration data will be provided to both Cisco and Trend Micro.
© 2005 Cisco Systems, Inc. All rights reserved.
Important notices, privacy statements, and trademarks of Cisco Systems, Inc. can be found on cisco.com.
Page 3 of 8
Q.
What are the features delivered by Cisco IPS Sensor Software Version 5.0?
A.
A complete description of features supported with Cisco IPS Sensor Software Version 5.0 can be obtained with the product's data sheet,
available at:
http://www.cisco.com/go/ips
Q.
What are the management/monitoring options for Cisco IPS Sensor Software Version 5.0?
A.
The following options deliver support for Cisco IPS Sensor Software Version 5.0:
•
CLI (embedded in IPS sensor)
•
IPS Device Manager (embedded in IPS sensor)
•
CiscoWorks VPN/Security Management Solution (VMS)
•
CiscoWorks Security Information Management Solution (SIMS)
Q.
Where can I obtain more information on CiscoWorks VMS and SIMS?
A.
For more information on CiscoWorks VMS, please visit
http://www.cisco.com/go/vms
. For more information on CiscoWorks SIMS, please
visit
http://www.cisco.com/go/sims
.
Q.
How can I obtain more information on late breaking threats and attack mitigation signatures supported on the Cisco IPS Version 5.0 Sensor?
A.
The Cisco IPS Alert Center (
http://www.cisco.com/go/ipsalert
) is a centralized site on Cisco.com that delivers comprehensive information on
threats that can be mitigated using Cisco IPS sensors. This site provides the user with detailed information on:
•
Breaking News-Provides real-time information on late-breaking threats
•
Latest Threats-List of the threats surfaced in the last 7 days
•
Active Threats-Threats seen most frequently & pose greatest danger
•
Cisco IPS Active Updates-Links to the last 3 IPS Active Update bulletins, the archives of bulletins & the IPS bulletin subscription site
•
IPS signature descriptions-through the capability of performing advanced searches on the IPS NSDB (Network Security Data Base) entries
Q.
Does Cisco support a site that allows where Cisco IPS users can discuss topics related to IPS?
A.
Yes. The Cisco IPS Networking Professionals site allows Cisco IPS users to share questions, suggestions, and information about IPS
technologies. This site can be accessed at
http://www.cisco.com/go/netpro
.
IPS SERVICES TO STOP WORMS AND VIRUSES
Q.
Can Cisco IPS Sensor Software Version 5.0 stop worms and viruses from compromising target systems?
A.
Yes. Cisco IPS Sensor Software Version 5.0 delivers inline IPS services that have the ability to drop packets and prevent attacks from
reaching target systems.
Q.
Can a single Cisco IPS device deliver IPS services to multiple subnets on the network?
A.
Yes. Multiple monitoring interfaces on a sensor can be paired up such that each interface pair will be capable of supporting a single instance
of IPS services. For example, a sensor that supports four monitoring interfaces can simultaneously deliver IPS services to two network subnets.
Q.
Can a sensor operate in either the promiscuous-based IDS mode or the inline-based IPS mode?
A.
Yes. Cisco IPS Sensor Software Version 5.0 can be installed on a sensing device in either mode.
Q.
Can a sensor operate simultaneously in both the promiscuous-based IDS mode and the inline-based IPS mode?
A.
Yes. A single IPS device may be configured such that it can operate in a hybrid mode to deliver promiscuous-based IDS and inline-based
IPS services, simultaneously. For example, if a device contains five monitoring interfaces, it can be configured to deliver two instances of inline
IPS services (through four of the five interfaces) and a single instance of promiscuous IDS operations using the fifth monitoring interface.