IPS 4260 Setup Decision.

Unanswered Question
Jun 11th, 2008

I am fairly new to the IPS world and am currently setting up an IPS for Promiscious mode. When installing this device on G0/1 interface what should the port be configured for on the other end? Access, Trunk, or Span port? I want it to monitor all data passing through that switch if possible.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Farrukh Haroon Wed, 06/11/2008 - 13:13

The port connected to the 'sensing interface' of the IPS sensor will be the SPAN destination port. Please see the last link for characteristics of SPAN ports. You can send all traffic from a range of ports (even trunk ports) or a number of VLANs to a particular port.

Please have a look at:

http://www.cisco.com/en/US/docs/security/ips/6.0/configuration/guide/cli/cliInter.html#wp1033699

http://www.cisco.com/en/US/docs/security/ips/6.0/configuration/guide/idm/dmAnEng.html#wp1034136

http://www.cisco.com/warp/public/473/41.html

Regards

Farrukh

Actions

This Discussion