Filter
Top Products
5-40
Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1
OL-19892-01
Chapter 5 Configuring Interfaces
Configuring Interface Notifications
Step 5 Exit interface submode.
sensor(config-int)# exit
Apply Changes:?[yes]:
Step 6 Press Enter to apply the changes or enter no to discard them.
For More Information
• For detailed information on the ASA 5500 AIP SSM and bypass mode, see The Adaptive Security
Appliance, ASA 5500 AIP SSM, and Bypass Mode, page 18-12.
• For more information on inline bypass mode, see Configuring Inline Bypass Mode, page 5-38.
Configuring Interface Notifications
You can configure the sensor to monitor the flow of packets across an interface and send notification if
that flow changes (starts/stops) during a specified interval. You can configure the missed packet
threshold within a specific notification interval and also configure the interface idle delay before a status
event is reported.
Use the interface-notifications command in the service interface submode to configure traffic
notifications.
The following options apply:
• default—Sets the value back to the system default setting.
• idle-interface-delay—Specifies the number of seconds an interface must be idle before sending a
notification. The valid range is 5 to 3600. The default is 30 seconds.
• missed-percentage-threshold—Specifies the percentage of packets that must be missed during a
specified interval before notification will be sent. The valid range is 0 to 100. The default is 0.
• notification-interval—Specifies the interval to check for missed packet percentage. The valid range
is 5 to 3600. The default is 30 seconds
Configuring Interface Notifications
To configure the interface notification settings, follow these steps:
Step 1 Log in to the CLI using an account with administrator privileges.
Step 2 Enter global configuration mode.
sensor# configure terminal
Step 3 Enter interface submode.
sensor(config)# service interface
Step 4 Enter interface notifications submode.
sensor(config-int)# interface-notifications
Step 5 Specify the idle interface delay.
sensor(config-int-int)# idle-interface-delay 60