Cisco Cisco IPS 4345 Sensor 릴리즈 노트
4
Release Notes for Cisco Intrusion Prevention System 7.1(3)E4
OL-25881-01
ROMMON and TFTP
ROMMON and TFTP
ROMMON uses TFTP to download an image and launch it. TFTP does not address network issues such
as latency or error recovery. It does implement a limited packet integrity check so that packets arriving
in sequence with the correct integrity value have an extremely low probability of error. But TFTP does
not offer pipelining so the total transfer time is equal to the number of packets to be transferred times
the network average RTT. Because of this limitation, we recommend that the TFTP server be located on
the same LAN segment as the sensor. Any network with an RTT less than a 100 milliseconds should
provide reliable delivery of the image. Be aware that some TFTP servers limit the maximum file size that
can be transferred to ~32 MB.
as latency or error recovery. It does implement a limited packet integrity check so that packets arriving
in sequence with the correct integrity value have an extremely low probability of error. But TFTP does
not offer pipelining so the total transfer time is equal to the number of packets to be transferred times
the network average RTT. Because of this limitation, we recommend that the TFTP server be located on
the same LAN segment as the sensor. Any network with an RTT less than a 100 milliseconds should
provide reliable delivery of the image. Be aware that some TFTP servers limit the maximum file size that
can be transferred to ~32 MB.
IPS Management and Event Viewers
Use the following tools for configuring Cisco IPS 7.1(3)E4 sensors:
•
Cisco IDM 7.1.3
IDM 7.1.3 is included within the IPS 7.1(3)E4 files.
IDM 7.1.3 is included within IME 7.2.1.
IDM 7.1.3 requires JRE 1.6 or later.
You can use IDM 7.1.3 to configure IPS 6.2, 7.0, and 7.1 sensors.
•
Cisco IME 7.2.1
You can use IME 7.2.1 to configure IPS 6.1, 6.2, 7.0, and 7.1 sensors. Although IME 7.2.1 supports
the new platforms (IPS 4345, IPS 4360, and ASA 5500-X IPS SSP), they are not yet referenced in
the online help.
the new platforms (IPS 4345, IPS 4360, and ASA 5500-X IPS SSP), they are not yet referenced in
the online help.
•
IPS CLI included in IPS 7.1.
•
Cisco ASDM 6.3.4 and later.
Use the following tools for monitoring Cisco IPS 7.1(3)E4 sensors:
•
IDM 7.1.3
•
IME 7.2.1
•
MARS minimum version 5.2 and latest version 6.0.5
•
CSM 4.0 and later
Note
CSM 4.0(2) does not support the IPS 4270-20.
Note
You may need to configure viewers that are already configured to monitor the earlier version
sensors to accept a new SSL certificate for the Cisco IPS 7.1 sensors.
sensors to accept a new SSL certificate for the Cisco IPS 7.1 sensors.