Hi Uthay,

Plz find our response below.

1) How to access AIP-SSM through ASDM.

• You need to configure the IP for the AIP-SSM first

2) Is it possible to assign an ip to AIP-SSM from my inside interface LAN.

• Yes. It is possible to assign the IP address for the AIP-SSM & it should be reachable from the network

3) Is it required connect to management interface of the AIP-SSM to any switch(LAN).

• Yes. If not you cannot access the device using GUI & SSH from the external host.

4)How to control(Allow or Block) traffic.Since i am not very familiar with IDS/IPS , i want allow all the traffic but capture the logs of the aatck.

Can you take me through(Links to the documention site) step by step configuration which would place IDS/IPS in my network.

• Kindly use the below URL for your reference.
• http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/ips.html
  http://www.cisco.com/en/US/docs/security/ips/6.1/configuration/guide/cli/cli_ssm.html

• By Default AIP-SSM will not support the syslog as like ASA. So download the Cisco IPS Manager   Express, it will be used to collect all your IPS logs and you can verify the same. It has report feature where you can get the below

               * TOP ATTACKER REPORT

               * TOP VICTIM REPORT

               * TOP SIGNATURE REPORT  & More.

Let us know the update once you had configured. Good luck