Filter
Top Products
11-6
Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1
OL-19892-01
Chapter 11 Configuring External Product Interfaces
Adding External Product Interfaces and Posture ACLs
Adding External Product Interfaces
To add external product interfaces, follow these steps:
Step 1 Log in to the CLI using an account with administrator privileges.
Step 2 Enter external product interfaces submode.
sensor# configure terminal
sensor(config)# service external-product-interface
Step 3 Add the CSA MC interface.
sensor(config-ext)# cisco-security-agents-mc-settings 209.165.200.225
sensor(config-ext-cis)#
Step 4 Enable receipt of information from the CSA MC.
sensor(config-ext-cis)# enabled yes
Step 5 Change the default port setting.
sensor(config-ext-cis)# port 80
Step 6 Configure the login settings:
a. Enter the username.
sensor(config-ext-cis)# username jsmith
b. Enter and confirm the password.
sensor(config-ext-cis)# password
Enter password[]: *******
Re-enter password: *******
sensor(config-ext-cis)#
Note Steps 7 through 10 are optional. If you do not perform Steps 7 though 10, the default values
are used to receive all the CSA MC information with no filters applied.
Step 7 (Optional) Configure the watch list settings:
a. Allow the watch list information to be passed from the external product to the sensor.
sensor(config-ext-cis-wat)# enabled yes
Note If you do not enable the watch list, the watch list information received from a CSA MC is
deleted.
b. Change the percentage of the manual watch list RR from the default of 25.
sensor(config-ext-cis-wat)# manual-rr-increase 30
c. Change the percentage of the session-based watch list RR from the default of 25.
sensor(config-ext-cis-wat)# session-rr-increase 30
d. Change the percentage of the packet-based watch list RR from the default of 10.
sensor(config-ext-cis-wat)# packet-rr-increase 20