IPS Configurations

Unanswered Question
Jun 8th, 2007
User Badges:

I have Cisco ASA 5520 Series and was going through the documentation of IPS. Can anyone tell me what are the basic steps for the configuration for it. Do i need a aditional device to configure this option? What is Security Service Module? Do i need that? Is there a documentation for the setup of it? Please help! thank you

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Fernando_Meza Sat, 06/09/2007 - 03:16
User Badges:
  • Gold, 750 points or more

Hi .. basically the ASA 5520 can provide full packet inspection by adding a module in to it. This module is the AIPSSM. Once this module has been inserted in the correct slot, then you need to establish connectivity between the ASA and the module. once you have done that, then you can proceed with configuration by using the ASA graphic interface ASDM. The below link will give you a better idea.


Once configured the results is :

" The ASA 5500 series adaptive security appliance supports the AIP SSM, which runs advanced

IPS software that provides further security inspection. The adaptive security appliance diverts packets

to the AIP SSM just before the packet exits the egress interface (or before VPN encryption occurs, if

configured) and after other firewall policies are applied. "

I hope it helps .. please rate it if it does !!!


This Discussion