This document provides instructions for configuring an Intrusion Protection System (IPS) on a router in 6 steps:
1) Set the IPS signature storage location to flash memory
2) Create an IPS rule named "corpips"
3) Configure signature categories to retire all categories and unretire the basic "ios_ips" category
4) Apply the IPS rule "corpips" to interface GigabitEthernet0/0 in the outbound direction
5) Unretire the echo request signature 2004 subsignature 0 and enable it to alert and deny matching packets inline
6) Verify that ping only works from the DMZ server to the admin PC, not vice versa, with the new IPS configuration
Original Description:
infosec, IPA
Original Title
infosec - config IPA intrusion prevention system on ROUTER
This document provides instructions for configuring an Intrusion Protection System (IPS) on a router in 6 steps:
1) Set the IPS signature storage location to flash memory
2) Create an IPS rule named "corpips"
3) Configure signature categories to retire all categories and unretire the basic "ios_ips" category
4) Apply the IPS rule "corpips" to interface GigabitEthernet0/0 in the outbound direction
5) Unretire the echo request signature 2004 subsignature 0 and enable it to alert and deny matching packets inline
6) Verify that ping only works from the DMZ server to the admin PC, not vice versa, with the new IPS configuration
This document provides instructions for configuring an Intrusion Protection System (IPS) on a router in 6 steps:
1) Set the IPS signature storage location to flash memory
2) Create an IPS rule named "corpips"
3) Configure signature categories to retire all categories and unretire the basic "ios_ips" category
4) Apply the IPS rule "corpips" to interface GigabitEthernet0/0 in the outbound direction
5) Unretire the echo request signature 2004 subsignature 0 and enable it to alert and deny matching packets inline
6) Verify that ping only works from the DMZ server to the admin PC, not vice versa, with the new IPS configuration