Cisco Cisco IPS 4255 Sensor 릴리즈 노트
30
Release Notes for Cisco Intrusion Prevention System 6.0(1)E1
OL-8827-01
Recovering the Password
•
The NM CIDS does not run in inline mode.
•
The IDS 4215 and NM CIDS do not support virtualization.
•
Cisco access routers only support one IDS/IPS per router.
•
On IPS sensors with multiple processors (for example, the IPS 4260 and IPS 4270-20), packets may
be captured out of order in the IP logs and by the packet command. Because the packets are not
processed using a single processor, the packets can become out of sync when received from multiple
processors.
be captured out of order in the IP logs and by the packet command. Because the packets are not
processed using a single processor, the packets can become out of sync when received from multiple
processors.
•
An IPS appliance can support both promiscuous and inline monitoring at the same time; however
you must configure each physical interface in either promiscuous or inline mode. The sensor must
contain at least two physical sensing interfaces to perform both promiscuous and inline monitoring.
The exceptions to this are the AIP SSM-10 and AIP SSM-20. The AIP SSM can support both
promiscuous and inline monitoring on its single physical back plane interface inside the adaptive
security appliance. The configuration on the main adaptive security appliance can be used to
designate which packets/connections should be monitored by the AIP SSM as either promiscuous
or inline.
you must configure each physical interface in either promiscuous or inline mode. The sensor must
contain at least two physical sensing interfaces to perform both promiscuous and inline monitoring.
The exceptions to this are the AIP SSM-10 and AIP SSM-20. The AIP SSM can support both
promiscuous and inline monitoring on its single physical back plane interface inside the adaptive
security appliance. The configuration on the main adaptive security appliance can be used to
designate which packets/connections should be monitored by the AIP SSM as either promiscuous
or inline.
•
When deploying an IPS sensor monitoring two sides of a network device that does TCP sequence
number randomization, we recommend using a virtual senor for each side of the device. If you are
using the IDS 4125, which does not support virtualization, configure vs0 to track TCP sessions by
VLAN and interface.
number randomization, we recommend using a virtual senor for each side of the device. If you are
using the IDS 4125, which does not support virtualization, configure vs0 to track TCP sessions by
VLAN and interface.
•
After you upgrade any IPS software on your sensor, you must restart the IDM to see the latest
software features.
software features.
•
IDM does not support any non-English characters, such as the German umlaut or any other special
language characters. If you enter such characters as a part of an object name through IDM, they are
turned in to something unrecognizable and you will not be able to delete or edit the resulting object
through IDM or the CLI.
language characters. If you enter such characters as a part of an object name through IDM, they are
turned in to something unrecognizable and you will not be able to delete or edit the resulting object
through IDM or the CLI.
This is true for any string that is used by CLI as an identifier, for example, names of time periods,
inspect maps, server and URL lists, and interfaces.
inspect maps, server and URL lists, and interfaces.
•
You can only install eight IDSM2s per switch chassis.
•
The HTML-based IDM has been replaced with a Java applet.
•
When SensorApp is reconfigured, there is a short period when SensorApp is unable to respond to
any queries. Wait a few minutes after reconfiguration is complete before querying SensorApp for
additional information.
any queries. Wait a few minutes after reconfiguration is complete before querying SensorApp for
additional information.
For More Information
For more information on how many modules Cisco access routers support, refer to
.
Recovering the Password
For most IPS platforms, you can now recover the password on the sensor rather than using the service
account or reimaging the sensor. This section describes how to recover the password for the various IPS
platforms. It contains the following topics:
account or reimaging the sensor. This section describes how to recover the password for the various IPS
platforms. It contains the following topics:
•
•
•