Cisco Cisco IPS 4345 Sensor 릴리즈 노트

exit

service event-action-rules rules0

overrides deny-packet-inline

override-item-status Disabled

risk-rating-range 90-100

exit

exit 

[0] Go to the command prompt without saving this config.

[1] Return back to the setup without saving this config.

[2] Save this configuration and exit setup.

Enter 

 to save the configuration. 

Enter your selection[2]: 2 

Configuration Saved.

Reboot the ASA 5585-X IPS SSP.

ips-ssp# reset

Warning: Executing this command will stop all applications and reboot the node.

Continue with reset? []:

Enter 

 to continue the reboot.

After reboot, log in to the sensor, and display the self-signed X.509 certificate (needed by TLS).

ips-ssp# show tls fingerprint

MD5: C4:BC:F2:92:C2:E2:4D:EB:92:0F:E4:86:53:6A:C6:01

SHA1: 64:9B:AC:DE:21:62:0C:D3:57:2E:9B:E5:3D:04:8F:A7:FD:CD:6F:27

Write down the certificate fingerprints. You need the fingerprints to check the authenticity of the 
certificate when using HTTPS to connect to this ASA 5585-X IPS SSP with a web browser.

Apply the most recent service pack and signature update. You are now ready to configure your 
ASA 5585-X IPS SSP for intrusion prevention.

The following show configuration output is an example of what your configuration may look like. It 
will not match exactly because of the optional setup choices. 

To verify that you initialized your sensor, follow these steps:

Log in to the sensor. 

View your configuration.

sensor# show configuration

! ------------------------------

! Current configuration last modified Tue Nov 01 10:40:39 2011

! ------------------------------

! Version 7.1(3)

! Host:

!     Realm Keys          key1.0

! Signature Definition:

!     Signature Update    S581.0   2011-07-11