Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

IPS on 2811 router with 2 ISP

I have an 2811 router with 2 eth0/0 and eth0/1 for bgp with ISP 1 AND ISP 2. When IPS is enabled on eth0/0 everthing is ok, but when IPS IS enabled also on eth0/1, I can't receive emails from outside, our web servers cannot be accesed. can I receive some answers? thank you

2 REPLIES
Cisco Employee

Re: IPS on 2811 router with 2 ISP

Are you certain that your traffic is not taking an asymmetric path? Its possible that the IPS will be blocking what it believes to be malformed TCP traffic if it sees SYNs and ACKs from a single stream coming in from an unexpected interface/direction. Be sure there's no asymmetric routing that the IPS would have to inspect and that you are inspecting in the correct direction.

New Member

Re: IPS on 2811 router with 2 ISP

Hi

Thank you, but I don't think so(no traffic taking asymmetric path).

But I will atttach the running config and please check, and let me know.

regs

Michel

163
Views
0
Helpful
2
Replies
CreatePlease to create content