Table of Contents
Advertisement
Chapter 10
Initializing the Sensor
Note
Virtual sensor newVs is configured to prevent high risk threats in inline mode. (Risk
Rating 90-100)
Virtual sensor vs0 is configured to prevent high risk threats in inline mode.(Risk Rating
90-100)
Do you want to disable automatic threat prevention on all virtual sensors?[no]:
Step 12
Enter
The following configuration was entered.
service host
network-settings
host-ip 10.1.9.201/24,10.1.9.1
host-name AIM IPS
telnet-option disabled
access-list 10.0.0.0/8
access-list 64.0.0.0/8
ftp-timeout 300
no login-banner-text
exit
time-zone-settings
offset 0
standard-time-zone-name UTC
exit
summertime-option disabled
ntp-option disabled
exit
service web-server
port 443
exit
service analysis-engine
virtual-sensor vs0
physical-interface GigabitEthernet0/1
exit
exit
service event-action-rules rules0
overrides deny-packet-inline
override-item-status Disabled
risk-rating-range 90-100
exit
exit
[0] Go to the command prompt without saving this config.
[1] Return back to the setup without saving this config.
[2] Save this configuration and exit setup.
Enter
Step 13
Enter your selection[2]: 2
Configuration Saved.
Reboot the AIM IPS.
Step 14
AIM IPS# reset
Warning: Executing this command will stop all applications and reboot the node.
Continue with reset? []:
Enter
Step 15
OL-18504-01
The sensor comes with a built-in override to add the deny packet event action to high risk rating
alerts. If you do not want this protection, disable automatic threat prevention.
to disable automatic threat prevention on all virtual sensors.
yes
to save the configuration.
2
to continue the reboot.
yes
Cisco Intrusion Prevention System Appliance and Module Installation Guide for IPS 7.0
Advanced Setup
10-15
- Quick Links:
- Table of Contents
- How the Sensor Functions
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
