Table of Contents
Advertisement
Chapter 19
Intrusion Prevention System
Welcome to the IPS Rule Configuration Wizard
Select Interfaces
SDF Location
OL-4015-08
The location of the Signature Definition File (SDF).
•
The use case scenario illustrates a configuration in which an IPS rule is used.
Once you create the IPS rule and deliver the configuration to the router, you can
modify the rule by clicking the Edit IPS Rule tab.
Click the Launch IPS Rule Wizard button to begin.
This window provides a summary of the tasks that you perform when you
complete the IPS Rule wizard.
Click Next to begin configuring an IPS rule.
Select the interfaces on which you want to apply the IPS rule by specifying
whether the rule is to be applied to inbound traffic or outbound traffic. If you
check both the inbound and the outbound boxes the rule applies to traffic flowing
in both directions.
For example, the following selections apply IPS on inbound traffic on the BRI 0
interface, and both traffic directions on the FastEthernet 0 interface.
Interface Name
Inbound
BRI 0
Check
FastEthernet 0
Check
IPS examines traffic by comparing it against signatures contained in a Signature
Definition File (SDF). The SDF can be located in router flash or located on a
remote system that the router can reach. You can specify multiple SDF locations
so that if the router is not able to contact the first location, it can attempt to contact
other locations until it obtains an SDF.
Cisco Router and Security Device Manager Version 2.2 User's Guide
Outbound
Check
IPS Rules
19-33
Advertisement
Table of Contents
Troubleshooting
