AIM-IPS deployment specifics

Unanswered Question
Apr 21st, 2008

I'm planning to deploy IPS system using router 2821 and AIM-IPS module. Guys, could you help me to find out answers to the following questions:


1. Can the SUBinterface of the router interface be specified as command and control interface of the module using ip unnumbered command?

2. If external interface is configured in module as monitored interface and malicious traffic will be destined to this interface ip address (that is, this ip address will be as destination ip in the packets header). Is such traffic under control of AIM-IPS module?

3. Can BGP traffic be monitored by AIM-IPS module? How does it happen?


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
uchimaku Sat, 05/03/2008 - 23:44

I shall answer Qn#2,


Traffic on any of the interfaces present on the router can be monitored by AIM IPS.


You need to go the interface configuration and type , "ids-service-module monitoring access-list " to enable monitoring.


Thanks

Udaya

Actions

This Discussion