Sign In
Upload
Manuals
Brands
Cisco Manuals
Network Hardware
IDSM-2
Cisco IDSM-2 Intrusion Detection Module Manuals
Manuals and User Guides for Cisco IDSM-2 Intrusion Detection Module. We have
2
Cisco IDSM-2 Intrusion Detection Module manuals available for free PDF download: Installation Manual
Cisco IDSM-2 Installation Manual (412 pages)
Intrusion Prevention System Appliance and Module Installation Guide for IPS 7.0
Brand:
Cisco
| Category:
Firewall
| Size: 6.84 MB
Table of Contents
Table of Contents
3
Related Documentation
16
CHAPTER 1 Introducing the Sensor1-1
19
How the Sensor Functions
19
Capturing Network Traffic
19
Your Network Topology
21
Correctly Deploying the Sensor
21
Tuning the IPS
21
Sensor Interfaces
22
Understanding Sensor Interfaces
22
Command and Control Interface
23
Sensing Interfaces
24
Interface Support
24
TCP Reset Interfaces
27
Interface Restrictions
28
Interface Modes
30
Promiscuous Mode
30
Ipv6, Switches, and Lack of VACL Capture
31
Inline Interface Pair Mode
32
Inline VLAN Pair Mode
33
VLAN Group Mode
33
Deploying VLAN Groups
34
Supported Sensors
35
IPS Appliances
36
Introducing the IPS Appliance
36
Appliance Restrictions
37
Connecting an Appliance to a Terminal Server
37
IPS Modules
38
Introducing the AIM IPS
38
Introducing the AIP SSM
40
Introducing the IDSM2
42
Introducing the NME IPS
43
Time Sources and the Sensor
44
The Sensor and Time Sources
44
Synchronizing IPS Module System Clocks with the Parent Device System Clock
46
Verifying the Sensor Is Synchronized with the NTP Server
46
Correcting the Time on the Sensor
47
Installation Preparation
47
Site and Safety Guidelines
48
Site Guidelines
48
Rack Configuration Guidelines
48
Electrical Safety Guidelines
49
Power Supply Guidelines
50
Working in an ESD Environment
50
Cable Pinouts
51
10/100Baset and 10/100/1000Baset Connectors
52
Console Port (RJ-45)
53
To DB-9 or
54
CHAPTER 2 Installing the IPS 4240 and the IPS 42552-1
55
Introducing the IPS 4240 and the IPS 4255
55
Front and Back Panel Features
56
Specifications
58
Connecting the IPS 4240 to a Cisco 7200 Series Router
59
Accessories
59
Important Safety Instructions
59
Rack Mounting
60
Installing the IPS 4240 and the IPS 4255
61
Installing the IPS 4240-DC
64
CHAPTER 3 Installing the IPS 42603-1
69
Introducing the IPS 4260
69
Supported Interface Cards
70
Hardware Bypass
72
4GE Bypass Interface Card
72
Hardware Bypass Configuration Restrictions
73
Hardware Bypass and Link Changes and Drops
74
Front and Back Panel Features
74
Specifications
77
Accessories
77
Important Safety Instructions
78
Installing the IPS 4260
78
Installing the IPS 4260 in a 2-Post Rack
81
Installing the IPS 4260
83
Removing and Replacing the Chassis Cover
86
Installing and Removing Interface Cards
88
Installing and Removing the Power Supply
90
Rack Mounting
78
Installing the IPS 4260 in a 4-Post Rack
78
Chapter 4 Installing the IPS 4270-20
93
Introducing the IPS 4270-20
94
Supported Interface Cards
95
Hardware Bypass
97
4GE Bypass Interface Card
97
Hardware Bypass Configuration Restrictions
98
Hardware Bypass and Link Changes and Drops
99
Front and Back Panel Features
99
Diagnostic Panel
103
Internal Components
105
Specifications
106
Accessories
107
Installing the Rail System Kit
107
Rail System Kit Contents
108
Space and Airflow Requirements
108
Installing the IPS 4270-20 in the Rack
109
Extending the IPS 4270-20 from the Rack
117
Installing the Cable Management Arm
120
Converting the Cable Management Arm
123
Installing the IPS 4270-20
127
Removing and Replacing the Chassis Cover
130
Accessing the Diagnostic Panel
133
Installing and Removing Interface Cards
133
Installing and Removing Interface Cards
134
Installing and Removing the Power Supply
136
Installing and Removing Fans
141
Troubleshooting Loose Connections
143
CHAPTER 5 Installing the AIM IPS5-1
145
Specifications
145
Before Installing the AIM IPS
146
Software and Hardware Requirements
146
Interoperability with Other IPS Modules
147
Restrictions
147
Hardware Interfaces
148
Installation and Removal Instructions
149
Verifying Installation
150
Specifications
151
Installing the Aip Ssm
151
Memory Specifications
152
Hardware and Software Requirements
152
Indicators
152
Chapter 6 Installing the AIP SSM
152
Installation and Removal Instructions
153
Installing the AIP SSM
153
Verifying the Status of the AIP SSM
154
Installing the AIP SSM
154
Removing the AIP SSM
155
Cisco Intrusion Prevention System Appliance and Module Installation Guide for IPS
155
CHAPTER 7 Installing the IDSM27-1
157
Specifications
157
Software and Hardware Requirements
158
Minimum Supported the IDSM2 Configurations
158
Using the TCP Reset Interface
159
Front Panel Features
159
Installation and Removal Instructions
160
Required Tools
160
Slot Assignments
161
Installing the IDSM2
161
Verifying Installation
165
Removing the IDSM2
166
Enabling Full Memory Tests
168
Catalyst Software
168
Cisco IOS Software
169
Resetting the IDSM2
169
Catalyst Software
169
Cisco IOS Software
170
Powering the IDSM2 up and down
171
Catalyst Software
171
Cisco IOS Software
172
CHAPTER 8 Installing the NME IPS8-1
173
Specifications
173
Before Installing the NME IPS
174
Software and Hardware Requirements
174
Interoperability with Other IPS Modules
175
Restrictions
175
Hardware Interfaces
176
Installation and Removal Instructions
177
Verifying Installation
178
CHAPTER 9 Logging in to the Sensor9-1
179
Supported User Roles
179
Logging in to the Appliance
180
Connecting an Appliance to a Terminal Server
181
Logging in to the AIM IPS
182
The AIM IPS and the Session Command
182
Sessioning in to the AIM IPS
183
Logging in to AIP SSM
184
Logging in to the IDSM2
186
Logging in to the NME IPS
187
The NME IPS and the Session Command
187
Sessioning in to the NME IPS
188
Logging in to the Sensor
189
CHAPTER 10 Initializing the Sensor10-1
191
Understanding Initialization
191
Simplified Setup Mode
191
System Configuration Dialog
192
Basic Sensor Setup
194
Advanced Setup
197
Advanced Setup for the Appliance
198
Advanced Setup for the AIM IPS
203
Advanced Setup for the AIP SSM
206
Advanced Setup for the IDSM2
210
Advanced Setup for the NME IPS
215
Verifying Initialization
218
Chapter 11 Obtaining Software
221
Obtaining Cisco IPS Software
221
IPS Software Versioning
222
Software Release Examples
226
Upgrading Cisco IPS Software to 7.0
227
Accessing IPS Documentation
229
Cisco Security Intelligence Operations
229
Obtaining a License Key from Cisco.com
230
Understanding Licensing
230
Service Programs for IPS Products
231
Obtaining and Installing the License Key Using IDM or IME
231
Obtaining and Installing the License Key Using the CLI
233
Chapter 12 Upgrading, Downgrading, and Installing System Images
237
Upgrades, Downgrades, and System Images
237
Supported FTP and HTTP/HTTPS Servers
238
Upgrading the Sensor
238
IPS 7.0 Upgrade Files
238
Upgrade Command and Options
239
Using the Upgrade Command
240
Upgrading the Recovery Partition
241
Configuring Automatic Upgrades
242
Automatic Upgrades
242
Auto-Upgrade Command and Options
243
Using the Auto-Upgrade Command
244
Automatic Upgrade Examples
246
Downgrading the Sensor
247
Recovering the Application Partition
248
Application Partition
248
Using the Recover Command
248
Installing System Images
249
Understanding ROMMON
250
Supported TFTP Servers
250
Connecting an Appliance to a Terminal Server
250
Installing the IPS 4240 and IPS 4255 System Images
251
Installing the IPS 4260 System Image
254
Installing the IPS 4270-20 System Image
256
Installing the AIM IPS System Image
259
Installing the AIP SSM System Image
261
Reimaging the AIP SSM
262
Reimaging the AIP SSM Using the Recover Configure/Boot Command
262
Installing the IDSM2 System Image
264
Understanding the IDSM2 System Image
264
Installing the IDSM2 System Image for Catalyst Software
264
Installing the IDSM2 System Image for Cisco IOS Software
264
Configuring the IDSM2 Maintenance Partition for Catalyst Software
267
Configuring the IDSM2 Maintenance Partition for Cisco IOS Software
271
Upgrading the IDSM2 Maintenance Partition for Catalyst Software
274
Upgrading the IDSM2 Maintenance Partition for Cisco IOS Software
275
Installing the NME IPS System Image
276
APPENDIX A Troubleshooting A-1
279
Bug Toolkit
279
Preventive Maintenance
280
Understanding Preventive Maintenance
280
Creating and Using a Backup Configuration File
281
Backing up and Restoring the Configuration File Using a Remote Server
281
Creating the Service Account
283
Disaster Recovery
284
Recovering the Password
285
Understanding Password Recovery
286
Recovering the Appliance Password
286
Using the GRUB Menu
286
Using ROMMON
287
Recovering the AIM IPS Password
288
Recovering the AIP SSM Password
288
Recovering the IDSM2 Password
291
Recovering the NME IPS Password
291
Disabling Password Recovery
292
Verifying the State of Password Recovery
293
Troubleshooting Password Recovery
293
Time and the Sensor
294
Time Sources and the Sensor
294
Synchronizing IPS Module Clocks with Parent Device Clocks
295
Verifying the Sensor Is Synchronized with the NTP Server
295
Correcting Time on the Sensor
296
Advantages and Restrictions of Virtualization
296
Supported Mibs
297
When to Disable Anomaly Detection
298
Troubleshooting Global Correlation
298
Analysis Engine Not Responding
299
Troubleshooting External Product Interfaces
300
External Product Interfaces Issues
300
External Product Interfaces Troubleshooting Tips
301
Troubleshooting the Appliance
301
Hardware Bypass and Link Changes and Drops
302
Troubleshooting Loose Connections
302
Analysis Engine Is Busy
303
Connecting the IPS 4240 to a Cisco 7200 Series Router
303
Communication Problems
304
Cannot Access the Sensor CLI through Telnet or SSH
304
Correcting a Misconfigured Access List
306
Duplicate IP Address Shuts Interface down
307
Sensorapp and Alerting
308
Sensorapp Not Running
308
Physical Connectivity, SPAN, or VACL Port Issue
310
Unable to See Alerts
311
Sensor Not Seeing Packets
313
Cleaning up a Corrupted Sensorapp Configuration
315
Blocking
315
Troubleshooting Blocking
315
Verifying ARC Is Running
315
Verifying ARC Connections Are Active
316
Device Access Issues
319
Verifying the Interfaces and Directions on the Network Device
321
Enabling SSH Connections to the Network Device
321
Blocking Not Occurring for a Signature
322
Verifying the Master Blocking Sensor Configuration
323
Logging
324
Understanding Debug Logging
324
Enabling Debug Logging
325
Zone Names
328
Directing Cidlog Messages to Syslog
329
TCP Reset Not Occurring for a Signature
330
Software Upgrades
331
Upgrading and Analysis Engine
332
Which Updates to Apply and Their Prerequisites
332
Issues with Automatic Update
332
Updating a Sensor with the Update Stored on the Sensor
332
Troubleshooting IDM
334
Cannot Launch IDM - Loading Java Applet Failed
334
Cannot Launch IDM-Analysis Engine Busy
335
IDM, Remote Manager, or Sensing Interfaces Cannot Access Sensor
335
Signatures Not Producing Alerts
336
Troubleshooting IME
337
Time Synchronization on IME and the Sensor
337
Not Supported Error Message
337
Troubleshooting the IDSM2
337
Diagnosing IDSM2 Problems
338
Minimum Supported IDSM2 Configurations
339
Switch Commands for Troubleshooting
339
Status LED off
340
Status LED on but the IDSM2 Does Not Come Online
341
Cannot Communicate with the IDSM2 Command and Control Port
342
Using the TCP Reset Interface
344
Connecting a Serial Cable to the IDSM2
344
Troubleshooting the AIP SSM
344
Health and Status Information
344
The AIP SSM and the Data Plane
347
AIM SSP and the Normalizer Engine
347
Troubleshooting the AIM IPS and the NME IPS
347
Interoperability with Other IPS Network Modules
347
Gathering Information
348
Health and Network Security Information
348
Tech Support Information
349
Understanding the Show Tech-Support Command
349
Displaying Tech Support Information
349
Tech Support Command Output
349
Version Information
352
Understanding the Show Version Command
352
Displaying Version Information
352
Statistics Information
354
Understanding the Show Statistics Command
355
Displaying Statistics
355
Interfaces Information
365
Understanding the Show Interfaces Command
365
Interfaces Command Output
365
Events Information
366
Sensor Events
366
Understanding the Show Events Command
367
Displaying Events
367
Clearing Events
370
Ciddump Script
370
Uploading and Accessing Files on the Cisco FTP Site
371
Troubleshooting
279
Advertisement
Cisco IDSM-2 Installation Manual (196 pages)
Intrusion Prevention System Appliances and Modules 5.0
Brand:
Cisco
| Category:
Network Hardware
| Size: 3.7 MB
Table of Contents
Table of Contents
3
How the Sensor Functions
13
Capturing Network Traffic
13
Chapter 1 Introducing the Sensor
14
Sensor Interfaces
15
Promiscuous Mode
15
Inline Mode
16
TCP Reset
16
Supported Interfaces
17
Your Network Topology
18
Supported Sensors
18
Appliances
20
Introducing the Appliance
20
Appliance Restrictions
21
Connecting an Appliance to a Terminal Server
21
Modules
22
Introducing AIP-SSM
23
Introducing IDSM-2
24
Introducing NM-CIDS
24
Time Sources and the Sensor
26
Understanding Time on the Sensor
26
Correcting the Time on the Sensor
28
Installation Preparation
28
Site and Safety Guidelines
29
Site Guidelines
29
Rack Configuration Guidelines
30
Electrical Safety Guidelines
30
Power Supply Guidelines
31
Working in an ESD Environment
31
Cable Pinouts
32
10/100Base-TX and 10/100/1000Base-TX Connectors
32
Installing Cisco Intrusion Prevention System Appliances and Modules
32
Console Port (RJ-45)
34
To DB-9 or
35
Installing IDS-4210
37
Front and Back Panel Features
37
Accessories
37
Front and Back Panel Features and Indicators
38
Upgrading the Memory
39
Installing IDS-4210
41
Installing the Accessories
43
Accessories Package Contents
43
Installing and Removing the Bezel
43
Rack Mounting
43
Installing Center Mount Brackets
44
Installing Front Mount Brackets
45
Installing IDS-4215
47
Introducing IDS-4215
47
Specifications
47
Front and Back Panel Features
48
Specifications
49
Accessories
50
Surface Mounting
51
Rack Mounting
51
Installing IDS-4215
53
Upgrading the BIOS and ROMMON
55
Removing and Replacing the Chassis Cover
57
Removing the Chassis Cover
57
Replacing the Chassis Cover
59
Removing and Replacing the IDE Hard-Disk Drive
60
Removing the Hard-Disk Drive
61
Replacing the Hard-Disk Drive
62
Removing and Replacing the Compact Flash Device
63
Removing the Compact Flash Device
63
Replacing the Compact Flash Device
64
Removing and Installing the 4FE Card
65
Removing the 4FE Card
66
Installing the 4FE Card
68
CHAPTER 4 Installing IDS-4235 and IDS-4250
71
Introducing IDS-4235 and IDS-4250
71
Front-Panel Features and Indicators
72
Back-Panel Features and Indicators
74
Specifications
75
Installing Spare Hard-Disk Drives
75
Upgrading the BIOS
75
Using the TCP Reset Interface
76
Installing IDS-4235 and IDS-4250
77
Installing the Accessories
79
Accessories Package Contents
79
Installing and Removing the Bezel
80
Installing the Power Supply
80
Installing Optional PCI Cards
82
Disconnecting the XL Card Fiber Ports
84
Removing and Replacing the SCSI Hard-Disk Drive
85
Removing the SCSI Hard-Disk Drive
86
Replacing the SCSI Hard-Disk Drive
87
Four-Post Rack Installation
87
Recommended Tools and Supplies
88
Rack Kit Contents
88
Two-Post Rack Installation
97
Recommended Tools and Supplies
97
Rack Kit Contents
97
Marking the Rack
98
Installing the Slide Assemblies in the Rack
98
Step 1
88
Installing the Slide Assemblies
88
Installing the Appliance in the Rack
90
Installing the Cable-Management Arm
91
Routing the Cables
95
CHAPTER 5 Installing IPS-4240 and IPS-4255
103
Introducing IPS-4240 and IPS-4255
103
Front and Back Panel Features
104
Specifications
106
Accessories
107
Rack Mounting
108
Installing IPS-4240 and IPS-4255
109
Specifications
113
Memory Specifications
113
Hardware and Software Requirements
114
Indicators
114
Chapter 6 Installing AIP-SSM
114
Installation and Removal Instructions
115
Installing AIP-SSM
115
Verifying the Status of AIP-SSM
116
Installation and Removal Instructions
116
Installing AIP-SSM
116
Removing AIP-SSM
117
Installing IDSM-2
119
Specifications
119
Software and Hardware Requirements
120
Supported IDSM-2 Configurations
120
Using the TCP Reset Interface
121
Front Panel Features
121
Installation and Removal Instructions
122
Required Tools
122
Slot Assignments
122
Installing IDSM-2
123
Verifying Installation
126
Removing IDSM-2
128
Enabling Full Memory Tests
130
Catalyst Software
130
Cisco IOS Software
131
Resetting IDSM-2
131
Catalyst Software
131
Catalyst Software
133
Cisco IOS Software
133
Powering IDSM-2 up and down
133
Specifications
136
Software and Hardware Requirements
136
Hardware Architecture
136
Chapter 8 Installing NM-CID
137
Front Panel Features
139
Interfaces
139
Installing NM-CIDS
139
Installing NM-CIDS Offline
141
Installing NM-CIDS Using OIR Support
143
Removing NM-CIDS
144
Removing NM-CIDS Offline
144
Removing NM-CIDS Using OIR Support
145
Blank Network Module Panels
146
Chapter 9 Initializing the Sensor
147
Overview
147
System Configuration Dialog
147
Initializing the Sensor
148
Initializing the Sensor
149
Verifying Initialization
153
Obtaining Software
156
Chapter 10 Obtaining Software
156
IPS Software Versioning
156
IPS Software Image Naming Conventions
157
5.X Software Release Examples
158
Upgrading Cisco IPS Software from 4.1 to
159
Obtaining a License Key from Cisco.com
160
Overview
160
Service Programs for IPS Products
161
Obtaining and Installing the License Key
162
Using IDM
162
Using the CLI
163
Cisco IPS Active Update Bulletins
165
Accessing IPS Documentation
166
Cisco Security Center
167
G L O S S a R y
169
I N D E X
189
Advertisement
Related Products
Cisco IDS 4210 - Intrusion Detection Sys 4210 Sensor
Cisco IDS-4230-FE - Intrusion Detection Sys Fast Ethernet Sensor
Cisco IDS-4215
Cisco IDS-4235
Cisco IDS-4250
Cisco IAD2431-8FXS
Cisco IP/VC 3511
Cisco IP/VC 3521
Cisco IGX 8400 Series
Cisco IPS 7.1
Cisco Categories
Switch
IP Phone
Network Router
Wireless Access Point
Network Hardware
More Cisco Manuals
Login
Sign In
OR
Sign in with Facebook
Sign in with Google
Upload manual
Upload from disk
Upload from URL