Aip Ssm Procedure Overview - Cisco PIX 500 Series Configuration Manual
Security appliance command line
Hide thumbs
Also See for PIX 500 Series:
- Administration manual (653 pages) ,
- Quick start manual (72 pages) ,
- User manual (60 pages)
Table of Contents
Advertisement
Managing the AIP SSM
Figure 22-3
Figure 22-4
mode); each defined traffic flow goes to a different sensor.
Figure 22-4
AIP SSM Procedure Overview
Configuring the AIP SSM is a process that includes configuration of the AIP SSM and then configuration
of the ASA 5500 series adaptive security appliance:
1.
2.
3.
4.
Cisco Security Appliance Command Line Configuration Guide
22-4
Security Contexts and Virtual Sensors
Security Appliance
Main System
Context
1
Context
Sensor
1
AIP SSM
shows a single mode security appliance paired with multiple virtual sensors (in inline
Single Mode Security Appliance with Multiple Virtual Sensors
Security Appliance
Main System
Sensor
Sensor
1
AIP SSM
Session to the AIP SSM from the security appliance. See the
on page
22-5.
On the AIP SSM, configure the inspection and protection policy, which determines how to inspect
traffic and what to do when an intrusion is detected. Configure the inspection and protection policy
for each virtual sensor if you want to run the AIP SSM in multiple sensor mode. See the
"Configuring the Security Policy on the AIP SSM" section on page
On the ASA 5500 series adaptive security appliance in multiple context mode, specify which IPS
virtual sensors are available for each context (if you configured virtual sensors). See the
Virtual Sensors to Security Contexts" section on page
On the ASA 5500 series adaptive security appliance, identify traffic to divert to the AIP SSM. See
the
"Diverting Traffic to the AIP SSM" section on page
2
Context
3
Sensor
2
Traffic 1
Traffic 2
Traffic 3
Sensor
2
3
Chapter 22
Managing the AIP SSM and CSC SSM
"Sessioning to the AIP SSM" section
22-6.
22-6.
22-8.
"Assigning
OL-12172-03
Advertisement
Table of Contents
Troubleshooting
