IPS 4240 configuration question

Unanswered Question
Nov 17th, 2008
User Badges:

I have a 4240 that is physically sitting in between my edge router and my ASA - One interface is connected to router and the other is connected to ASA. I have confiured Inline Interface pair. My question is to manage 4240, what option do I have? I know using management interface is one option. However, due to security concern, they don't want to use management interface. I was wondering if there is any other way I can manage.


Thanks.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
rhermes Mon, 11/17/2008 - 08:26
User Badges:
  • Gold, 750 points or more

The only way to communicate to your 4240 is via the management interface (ethernet) or via the console port (serial). The management interface allows you a lot more flexibility, ssh, IDM (the GUI interface), event feeds to a SIM platform (via SDEE protocol), and most importantly; software and signature updates.

Why would you want to place your IPS sensors OUTSIDE your firewall?

peterhkim Mon, 11/17/2008 - 08:34
User Badges:

This was their requirement putting IPS in between router and FW. I guess I have to use management interface. Thanks for your help.

Actions

This Discussion