Support User Manuals

Cisco Systems IPS 7.1 Home Security System User Manual

Open as PDF

of 1042

18-7

Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1

OL-19892-01

Chapter 18 Configuring the ASA 5500 AIP SSM

Creating Virtual Sensors for the ASA 5500 AIP SSM

sensor(config-ana)# exit

Apply Changes:?[yes]:

sensor(config)#

Step 11 Press Enter to apply the changes or enter no to discard them.

For More Information

• For the procedures for creating and configuring anomaly detection policies, see Working With

Anomaly Detection Policies, page 9-9.

• For the procedure for creating and configuring event action rules policies, see Working With Event

Action Rules Policies, page 7-8.

• For the procedure for creating and configuring signature definitions, Working With Signature

Definition Policies, page 8-2.

Assigning Virtual Sensors to Adaptive Security Appliance Contexts

After you create virtual sensors on the ASA 5500 AIP SSM, you must assign the virtual sensors to a

security context on the adaptive security appliance.

The following options apply:

• [no] allocate-ips sensor_name [mapped_name] [default]—Allocates a virtual sensor to a security

context. Supported modes are multiple mode, system context, and context submode.

Note You cannot allocate the same virtual sensor twice in a context.

–

sensor_name—Specifies the name of the virtual sensor configured on the ASA 5500 AIP SSM.

You receive a warning message if the name is not valid.

–

mapped_name—Specifies the name by which the security context knows the virtual sensor.

Note The mapped name is used to hide the real name of the virtual sensor from the context,

usually done for reasons of security or convenience to make the context configuration

more generic. If no mapped name is used, the real virtual sensor name is used. You

cannot reuse a mapped name for two different virtual sensors in a context.

–

no—De-allocates the sensor, looks through the policy map configurations, and deletes any IPS

subcommand that refers to it.

–

default—Specifies this virtual sensor as the default. All legacy IPS configurations that do not

specify a virtual sensor are mapped to this virtual sensor.

Caution You can only configure one default virtual sensor per context. You must turn off the default flag of an

existing default virtual sensor before you can designate another virtual sensor as the default.

–

clear configure allocate-ips—Removes the configuration.

–

allocate-ips?—Displays the list of configured virtual sensors.

previous next