12-17-2008 03:41 PM - edited 03-10-2019 04:25 AM
I am trying to configure an IPS sensor for the first time and need to configure an IP address. I am confused about what IP address to use. I am probably over thinking this, but does the sensor get an IP address in the same range as the GI0/1 IP address subnet or does it get a seperate range for the sensor?
Your help is greatly appreciated.
12-24-2008 07:16 AM
Follow this sequence to set up interfaces on AIM-IPS and the router:
1. Configure the IPS command and control interface on the router, and the AIM-IPS IP address, mask, and gateway using one of the following methods:
⢠An unnumbered IP address on the IDS-Sensor interface
Note Using an unnumbered IP address on the IDS-Sensor interface is the preferred method for configuring interfaces on the module and router.
⢠A routable IP address
⢠Default module IP address with NAT
⢠User-configured IP address with NAT
2. Enable the monitoring interface and specify whether it is promiscuous or inline, assign the ACL to the interface, specify how you want the router to handle traffic if the module fails, and create a monitoring ACL (optional).
3. Save the configuration.
For further information click this link.
http://www.cisco.com/en/US/docs/security/ips/6.0/configuration/guide/cli/cliAIM.html#wp1044068
02-25-2009 02:02 PM
The sensor can use a IP address of another interface subnet (Using an Unnumbered IP Address Interface ) or can use another IP address subnet (Using a Routable IP Address Interface )
you can read more here http://www.cisco.com/en/US/docs/security/ips/6.1/configuration/guide/cli/cli_aim.html#wp1044934
02-25-2009 02:40 PM
Thank you
Kelvin
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: