The Cisco IPS 4240 is a little too expensive and has too much "horse power" for our needs. I know I can connect the AIP-SSM to our ASA 5510 to scan traffic going through the ASA. What if I have my core router on our internal network send all traffic from all nodes to the ASA as the next hop for review by the AIP-SSM instead of sending the traffic directly to the internal destination? Is this recommended? Will it work? Have you tried it?
We are currently undergoing site maintenance. There will be a delay in refreshing the data created since 12 am PT, March 7th 11:45 PM and will be updated by March 9th 6 pm PT.
We thank you for your patience.
I have this problem too.