05-01-2012 11:51 AM - edited 03-10-2019 05:39 AM
Im working on configureing an SSM40 on a 5520. I want all traffic entering and leaving the network to be scanned before being passed to the ASA. My question is when Im setting the sensor up under the traffic allocation tabdose selecting the Global policy satisfy this need above? I have seen some configuration guide where aa class map is needed on the ASA to actually send traffic to the sensor? Is this class map needed?
Also another ASA I seen running SSM10 under the backplane the mode was "unpaired" should this be paired?
05-01-2012 06:06 PM
Yes, the class-map would be required.
You may want to refer to following guide for detailed config.
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00807335ca.shtml
Hope this helps.
Regards,
Sawan Gupta
05-02-2012 02:25 PM
There is a VOD at the link below which steps you through the initial config.
05-07-2012 11:54 AM
I'd reccomend setting up the policy so that it matches an access-list in a class-map, as opposed to just sending it to the IPS. The ACL will show up in the ASDM and provide you with a check box to easily disbale the ACL rule and thus disable the IPS should you ever need to turn it off. The ACL should be a simple permit IP any any....
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide