Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

Can the IPS SSP be sent traffic, so it only acts as an IDS, not as an IPS?

Hi

I might be getting the wrong end of the stick, I'm looking at Cisco's IPS portfolio and like the sound of the IPS SSP in a 5585-X. I would like the IPS SSM to act passively and just monitor for illegal traffic. Traffic would not be passed through the 5585-X, only to it.

I would want the IPS SSP to be sent a copy of the traffic and then monitor this.

Would this be possible using the IPS SSP?

Many thanks

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Can the IPS SSP be sent traffic, so it only acts as an IDS, not

The IDS/IPS module will only receive traffic only after it passes through the ASA. The security policy on the IPS module can be set for non-blocking actions if you wish.

-Robert

1 REPLY
Cisco Employee

Can the IPS SSP be sent traffic, so it only acts as an IDS, not

The IDS/IPS module will only receive traffic only after it passes through the ASA. The security policy on the IPS module can be set for non-blocking actions if you wish.

-Robert

551
Views
0
Helpful
1
Replies
CreatePlease to create content