IPS Signature

Unanswered Question
Jun 3rd, 2010

Dear sir,

I need to verify whether my IPS signature is being updated or not, How can i check using CLI mode on that sensor(ASA-5510-AIP)

Any help will be appreciated.

And, As I attached a picture, this is the wizard of IPS  Automatic signature Update,I dont have any idea that what to fill up in those fields,

Do I need to purchase any Cisco Support to have an automatic update on that IPS?

Thank you

Attachment: 
I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jennifer Halim Thu, 06/03/2010 - 23:04

From ASA CLI, you would need to session into the module by entering:

session 1

Then login to the IPS, and "show version" will show you what signature pack is installed.

And yes, you would need to purchase IPS Subscription to update the signature to the latest version.

Hope that helps.

rhermes Fri, 06/04/2010 - 09:36

If you don't have a current licnese on the sensor (you can verify in the output of the same "show version" command) you can still apply software updates to the sensor. Each software update contains the latest signature pack as of their release date.

Although this may keep you running updated signatures (on a less frequent basis that regular signature updates) the newly released signatures in the software updates contain the "first attempt" signatures utilizing new signature engines and are a little more buggy than the typical signature update.

- Bob

Actions

This Discussion