IDS 4215 inline IPS

Unanswered Question
Feb 19th, 2007

Hi

One of our client has an IDS 4215 with 4FE. I don't know what version they are running but I believe it is pretty old... Around 3 years.

What version is required to get the IDS 4215 to work in in-line mode? And what software can be used to manage these device? Do you still have to use CSPM or is there something better?

Does anyone have an example configuration for the IDS 4215 or is there an example config on CCO?

Thanks

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3 (1 ratings)
Loading.
edadios Mon, 02/19/2007 - 23:22

If you are not interested in keeping the existing configuration, it would be best to re-image to 5.1.1, then apply the service pack, then apply the new signature updates.

Please note that you would need to purchase a license to be able to upgrade with new signatures.

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/csids/csids12/8492_01.htm#wp1063971

Please read the readme file here for minimum requirements of bios and rom.

http://ftp-sj.cisco.com/cisco/crypto/3DES/ciscosecure/ips/5.x/system/IPS-4215-K9-sys-1.1-a-5.1-1.txt

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/csids/csids12/8492_01.htm

Image files are here:

http://www.cisco.com/cgi-bin/tablebuild.pl/ips5-system

Firmware/Bios files are here:

http://www.cisco.com/cgi-bin/tablebuild.pl/ips5-firmware

After installing the 5.1.1 image, please install the 5.1.4 service pack.

And then install the latest signature upgrade.

The main page for the sensor files is here:

http://www.cisco.com/kobayashi/sw-center/ciscosecure/ids/crypto/

You can use IDM (GUI) to manage the sensor. It gets installed as part of the reimage.

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/csids/csids12/idmguide/index.htm

There are is a good guide in configuring here:

http://www.cisco.com/web/learning/le31/le29/configuring_ips_4200_series_sensors.html

I hope this information helps you.

Regards

Actions

This Discussion