Cisco IPS-4240-K9 - Intrusion Protection Sys 4240 Getting Started Manual page 5
Getting started with cisco ios ips with 5.x format signatures
Hide thumbs
Also See for IPS-4240-K9 - Intrusion Protection Sys 4240:
- Installation instructions manual (14 pages) ,
- Installation manual (196 pages)
Advertisement
All contents are Copyright © 1992–2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Additional Commands and References
If the key is configured incorrectly, you need to remove the crypto key first and then reconfigure it.
To remove the key, enter the following commands in order in Router Configure Mode:
training#configure terminal
training(config)#no crypto key pubkey-chain rsa
training(config-pubkey-chain)#no named-key realm-cisco.pub signature
training(config-pubkey-chain)#exit
training(config)#exit
Verify that the key is removed from the configuration using the following command at the router
prompt:
show run
Configure the key again by following Steps 3.1 through 3.5.
4 Enabling Cisco IOS IPS
The fourth step is to configure Cisco IOS IPS using the following sequence of steps:
Step 4.1 Create a rule name (this will be used on an interface to enable IPS)
ip ips name <rule name>
training#configure terminal
training(config)# ip ips name myips
Step 4.2 Configure IPS signature storage location; the directory name is the directory
"ipsstore" created in Step 2:
ip ips config location flash:<directory name>
training#configure terminal
training(config)#ip ips config location flash:ipsstore
Step 4.3 Enable IPS SDEE event notification:
ip ips notify sdee
training(config)#ip ips notify sdee
White Paper
Page 5 of 12
Advertisement
