IPS 4240 in In-line

Unanswered Question
Nov 15th, 2007
User Badges:

Dear Pros,


I need really your help on to implement the ips 4240 x 2 in inline mode for the 4 firewall segemnts (inside, outside, DMZ1, DMZ2)

Please explain me how to add the internal networks to the IPS and the steps to confiure it.


Thanks

swami

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
rhermes Mon, 11/19/2007 - 12:19
User Badges:
  • Gold, 750 points or more

Your 4240 only has 4 physical interfaces. If you want to make them in line pairs, your 4240 will only be in line on two segments; inside and DMZ1 for example.

If you need the 4240 be in line on all four segments then you will have to use an external switch to trunk the VLANs to the 4240 and configure VLAN Pairs.

There are many wonderful examples in the cisco documentation to show you how to accomplishment this.

arumugasamy Tue, 12/25/2007 - 22:20
User Badges:

Dear,


In my setup, the core switch 4507R connected to 2 3560 edge switches via separate trunk dot1q link. Each trunk carry 2 vlans (2-data, 9-voice)

I need to add the vlan 2 in inline mode.

I confused to place the IPS in this setup.

How can i place the IPS in inline between core and two edge switches for monitor vlan 2 traffic.

Waiting for your reply


Thnaks

swami

Actions

This Discussion