Cisco Systems IPS 7.1 Home Security System User Manual

Open as PDF

of 1042

18-6

Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1

OL-19892-01

Chapter 18 Configuring the ASA 5500 AIP SSM

Creating Virtual Sensors for the ASA 5500 AIP SSM

Step 3 Add a virtual sensor.

sensor(config-ana)# virtual-sensor vs1

sensor(config-ana-vir)#

Step 4 Add a description for this virtual sensor.

sensor(config-ana-vir)# description virtual sensor 1

Step 5 Assign an anomaly detection policy and operational mode to this virtual sensor if you have enabled

anomaly detection. If you do not want to use the default anomaly detection policy, ad0, you must create

a new one using the service anomaly-detection name command, for example, ad1.

sensor(config-ana-vir)# anomaly-detection

sensor(config-ana-vir-ano)# anomaly-detection-name ad0

sensor(config-ana-vir-ano)# operational-mode learn

Step 6 Assign an event action rules policy to this virtual sensor. If you do not want to use the default event action

rules policy, rules0, you must create a new one using the service event-action-rules name command, for

example, rules1

sensor(config-ana-vir-ano)# exit

sensor(config-ana-vir)# event-action-rules rules0

Step 7 Assign a signature definition policy to this virtual sensor. If you do not want to use the default signature

definition policy, sig0, you must create a new one using the service signature-definition name

command, for example sig1.

sensor(config-ana-vir)# signature-definition sig0

Step 8 Assign the interface to one virtual sensor. By default the sensing interface is already assigned to the

default virtual sensor, vs0. You must remove it from the default virtual sensor to assign it to another

virtual sensor that you create.

sensor(config-ana-vir)# physical-interface GigabitEthernet0/1

Step 9 Verify the virtual sensor settings.

sensor(config-ana-vir)# show settings

name: vs1

-----------------------------------------------

description: virtual sensor 1 default:

signature-definition: sig1 default: sig0

event-action-rules: rules1 default: rules0

anomaly-detection

-----------------------------------------------

anomaly-detection-name: ad1 default: ad0

operational-mode: learn default: detect

-----------------------------------------------

physical-interface (min: 0, max: 999999999, current: 2)

-----------------------------------------------

name: GigabitEthernet0/1

subinterface-number: 0 <defaulted>

-----------------------------------------------

logical-interface (min: 0, max: 999999999, current: 0)

-----------------------------------------------

sensor(config-ana-vir)#

Step 10 Exit analysis engine mode.

sensor(config-ana-vir)# exit

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems IPS 7.1 Home Security System User Manual