Sample Config - IDSM-2

Unanswered Question
Aug 26th, 2009
User Badges:

I'm looking for a sample config for a IPS IDSM-2. I've been reviewing the configuration manual and love the excruciating detail, but would like to work from a sample config. Maybe just the basics to get started and then I can add stuff in later.

Any samples would be most appreciated.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
rhermes Wed, 08/26/2009 - 13:05
User Badges:
  • Gold, 750 points or more

I assume you're looking for the 6500/7600 config since the IDSM sensor configs are identical to the appliance sensors.

There's two ways you can run traffic throught a sensor, promiscious and in-line. Here's a simple promiscious config:

intrusion-detection module 9 management-port access-vlan 101 (puts the ISDM in slot 9 management port on VLAN 101)

intrusion-detection module 9 data-port 1 capture allowed-vlan 1001,1002,1003 (sends the contents of those VLANS to port 1 of the IDSM)

intrusion-detection module 9 data-port 1 capture

mikedawson2005 Thu, 08/27/2009 - 06:26
User Badges:

Thnaks for the info. I guess, with all the commands and detail in the configuration manual that there would be a lot more to it than this.


Farrukh Haroon Fri, 08/28/2009 - 06:23
User Badges:
  • Red, 2250 points or more

You need to decide the mode you want to run your IPS in? Promiscuous, Inline (VLAN/Interface pair) ?

Here are two examples from CCO:




This Discussion