access-list IPS permit ip any any
class-map inspect_ips
match access-list IPS
policy-map policy_ips
class inspect_ips
ips promiscous fail-open (inline or promiscouns)
service-policy policy_ips global (global, or apply to specific interface)
For more information:
http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/ssm.html
Saturday, February 28, 2009
Installing an IPS module on an ASA
Subscribe to:
Post Comments (Atom)
Posts
0 comments:
Post a Comment