Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
950
Views
4
Helpful
1
Replies

IPS 4255 (any possible loops)

Zeeshan Siddiqui
Level 1
Level 1

‎11-07-2013 10:18 AM - edited ‎03-10-2019 06:05 AM

All,

I hope you are well and can pls assist with my following request

We have an IPS4255 installed in our data centre and want to cature traffic from all PCI related servers

we are planning to use all 4 interfaces on the IPS

all interfaces will connect to seperate switches.

The switches are a combination of 3750X and Nexus 5000s.

WE will have a local span running on the switches and the destionation of the span will be one of the interfaces on the IPS.

Below is an example for the destination port that connects to the IPS from one of the switces

interface GigabitEthernet1/0/10

description PCI-SPANPORT-IPS4200

switchport mode access

switchport nonegotiate

speed 1000

duplex full

udld port aggressive

spanning-tree guard root

monitor session 2 source interface Gi1/0/1

monitor session 2 destination interface Gi1/0/10

monitor session 2 filter ip access-group IPS-SPAN

My question

It there a possibility for a loop to occur between the IPS and the 4 switches connected to the differeent ports on the IPS 4255 will the IPS tranmit ot recive BPDU etc or bridge between switches.

Kind Regards,

Zee

Labels:
0 Helpful
1 Reply 1

Julio Carvajal
VIP Alumni
VIP Alumni

‎11-09-2013 09:48 PM

Hello Zeeshan,

What mode will u run on the IPS, I can see it will not be inline so I do not see a way a loop can form.

But anyway confirm that to us

Rate all of the helpful posts!!!

Regards,

Jcarvaja

Follow me on http://laguiadelnetworking.com

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card