Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Operational impact of putting SSM-IPS into inline mode?

Greetings all. I wanted to ask if anyone could speak on the behest of the operational impact caused by putting an SSM IPS card into inline mode? In specific I'm talking about the act of switching it on and the effect on traffic the instant it's enabled.

Thanks,

1 REPLY
New Member

Re: Operational impact of putting SSM-IPS into inline mode?

I remember that all active connections are closed. This happend when IPS switchs form bypass to inline or vice versa.

But you can test redirecting only test traffic using an ACL.

access-list toIPS permit ip host yourpc any

!

class-map my_ips_class

match access-list IPS

class-map all_traffic

match access-list toIPS

class-map inspection_default

match default-inspection-traffic

!

!

policy-map my-ids-policy

class my-ips-class

ips promiscuous fail-close

!

service-policy my-ids-policy global


Guido.

Please rate all the helpful comments.

145
Views
5
Helpful
1
Replies
CreatePlease to create content