currently my compnay decided to buy an ips, i have a cisco 6509 one core siwthc, all my servers connected to the core and seprated through vlans, i want to make inline IPS from any vlan to other valn, 5 of my vlans have SVI, the rest is not so what is the optimal solution for me??? and is it possible to provide me with prices if possible???
So if only 5 of your vlans have an interface on the cat6509, then this must mean the other vlans are restricted only to communicate WITHIN the vlan. In order for each vlan to have inline protection between them, you would have to create a dummy vlan for each production vlan and set up inline vlan pairs on the IDSM. (I am making an assumption here) Of course, the same would hold true on IDS appliance, given that you have enough interfaces (you create an inline interface pair).
Alternatively, you could set up SPAN or VACLs for all of the vlans you want protected. Of course, you are losing the IPS capabilities to an extent as this would be more of an IDS solution. You could add blocking devices to the sensor and set the action to block host for the signatures that you want to blocked against.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...