Table of Contents
Advertisement
IPS Tabs
IPS Policies Drawer
OL-4015-08
Intrusion Prevention System
IOS Intrusion Prevention System (IPS) allows you to manage intrusion prevention
on routers that run an IOS image of version 12.3(8)T4 or later. IPS lets you
monitor and prevents intrusions by comparing traffic against signatures of known
threats and blocking the traffic when a threat is detected.
SDM lets you control the application of IPS on interfaces, import and edit
signature definition files (SDFs) from Cisco.com, and configure the action that
IPS is to take when a threat is detected.
Click on a drawer in the IPS cabinet to go to the screen you need.
Use the tabs at the top of the IPS window to go to the area where you need to work.
Create IPS—Click to go to the IPS Rule wizard to create a new IPS rule.
•
Edit IPS—Click to edit IPS rules and apply or remove them from interfaces.
•
Import Signatures—Click to go to the Import Signatures wizard.
•
Click to display the
IPS Rules Configuration
disable IPS on an interface and view information about how IPS is applied. If you
enable IPS on an interface you can optionally specify which traffic to examine for
intrusion.
Cisco Router and Security Device Manager Version 2.2 User's Guide
C H A P T E R
window where you can enable or
19
19-31
Advertisement
Table of Contents
Troubleshooting
