IPS 4240 in In-line

Unanswered Question
Nov 15th, 2007

Dear Pros,

I need really your help on to implement the ips 4240 x 2 in inline mode for the 4 firewall segemnts (inside, outside, DMZ1, DMZ2)

Please explain me how to add the internal networks to the IPS and the steps to confiure it.

Thanks

swami

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
rhermes Mon, 11/19/2007 - 12:19

Your 4240 only has 4 physical interfaces. If you want to make them in line pairs, your 4240 will only be in line on two segments; inside and DMZ1 for example.

If you need the 4240 be in line on all four segments then you will have to use an external switch to trunk the VLANs to the 4240 and configure VLAN Pairs.

There are many wonderful examples in the cisco documentation to show you how to accomplishment this.

arumugasamy Tue, 12/25/2007 - 22:20

Dear,

In my setup, the core switch 4507R connected to 2 3560 edge switches via separate trunk dot1q link. Each trunk carry 2 vlans (2-data, 9-voice)

I need to add the vlan 2 in inline mode.

I confused to place the IPS in this setup.

How can i place the IPS in inline between core and two edge switches for monitor vlan 2 traffic.

Waiting for your reply

Thnaks

swami

Actions

This Discussion