Filter
Top Products
17-16
Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1
OL-19892-01
Chapter 17 Administrative Tasks for the Sensor
Configuring Health Status Information
Note The event retrieval metric keeps track of when the last event was retrieved by an external
monitoring application such as the IME. Disable event retrieval policy if you are not doing
external event monitoring.
• global-correlation-policy {enable | disable} {true | false}—Lets you apply this metric to the
overall sensor health rating.
• heartbeat-events {enable | disable} seconds—Lets you enable heartbeat events to be emitted at the
specified interval in seconds and have that apply to the overall sensor health rating. The range for
the interval is 15 to 86400 seconds.
• inspection-load-policy {enable | disable} {true | false} red-threshold yellow-threshold
seconds—Lets you set the threshold for inspection load. The health status is degraded to red or
yellow when that threshold is met. The range is 0 to 100.
• interface-down-policy {enable | disable} {true | false} status {green | yellow | red}—Lets you
choose to know if one or more enabled interfaces are down and have that apply to the overall sensor
health rating.
• license-expiration-policy {enable | disable} {true | false} red-threshold yellow-threshold—Lets
you set a threshold for when the license expires and whether this metric is applied to the overall
sensor health rating. The range for the threshold is 0 to 4294967295 seconds.
• memory-usage-policy {enable | disable} {true | false} red-threshold yellow-threshold—Lets you
set a threshold percentage for memory usage and whether this metric is applied to the overall sensor
health rating. The range is 0 to 100. The default for red is 91% and the default for yellow is 80%.
• missed-packet-policy {enable | disable} {true | false} red-threshold yellow-threshold—Lets you
set a threshold percentage for missed packets and whether this metric is applied to the overall sensor
health rating.
• network-participation-policy {enable | disable} {true | false}—Lets you apply this metric to the
overall sensor health rating.
• persist-security-status—Lets you set the number of minutes that a lower security persists following
the occurrence of the latest event to lower the security status.
• signature-update-policy {enable | disable} {true | false} red-threshold yellow-threshold—Lets
you set a threshold for the number of days elapsed since the last signature update and whether this
metric is applied to the overall sensor health rating. The range for the threshold is 0 to 4294967295
seconds
ASA 5500-X IPS SSP and Memory Usage
For the ASA 5500-X IPS SSP, the memory usage is 93%. The default health thresholds for the sensor
are 80% for yellow and 91% for red, so the sensor health will be shown as red on these platforms even
for normal operating conditions. You can tune the threshold percentage for memory usage so that it reads
more accurately for these platforms by configuring the memory-usage-policy option in the sensor health
metrics.
Note Make sure you have the memory-usage-policy option in the sensor health metrics enabled.