Cisco Cisco IPS Sensor Software Version 7.1 문제 해결 가이드

Contributed by Thulasi Shankar and David Houck, Cisco TAC
Engineers.
Sep 25, 2012

Introduction
 Prerequisites
      Requirements
      Components Used
      Conventions
 Feature Information
 Troubleshooting Methodology
 Workaround
 FAQ
 Related Information

As per design, the new Adaptive Security Appliance (ASA) 5500−X Intrusion Preventions Systems (IPS)
modules does not permit through−the−box traffic on the Management 0/0 port. Therefore, if the IPS is set to
use the IP address of the management interface of the ASA as the default gateway, then the sensor cannot be
managed or accessed from hosts behind other interfaces. Also, the sensor will not be able to reach the Internet.

This document explains how to set up the new ASA 5500−X IPS modules to access the Internet via the ASA.

Cisco recommends that you have knowledge of these topics:

ASA 5500−X IPS modules

• 

The information in this document is based on these software and hardware versions:

ASA 5500−X IPS modules

• 

The information in this document was created from the devices in a specific lab environment. All of the
devices used in this document started with a cleared (default) configuration. If your network is live, make sure
that you understand the potential impact of any command.