New SSM40 install

Todd Willoughby · ‎05-01-2012

Im working on configureing an SSM40 on a 5520. I want all traffic entering and leaving the network to be scanned before being passed to the ASA. My question is when Im setting the sensor up under the traffic allocation tabdose selecting the Global policy satisfy this need above? I have seen some configuration guide where aa class map is needed on the ASA to actually send traffic to the sensor? Is this class map needed?

Also another ASA I seen running SSM10 under the backplane the mode was "unpaired" should this be paired?

sawgupta · ‎05-01-2012

Yes, the class-map would be required.

You may want to refer to following guide for detailed config.

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00807335ca.shtml

Hope this helps.

Regards,

Sawan Gupta

Thanks & Regards, Sawan Gupta

Todd Pula · ‎05-02-2012

There is a VOD at the link below which steps you through the initial config.

https://supportforums.cisco.com/docs/DOC-12233#comment-6554

enkrypter · ‎05-07-2012

I'd reccomend setting up the policy so that it matches an access-list in a class-map, as opposed to just sending it to the IPS. The ACL will show up in the ASDM and provide you with a check box to easily disbale the ACL rule and thus disable the IPS should you ever need to turn it off. The ACL should be a simple permit IP any any....