Support User Manuals

Cisco Systems IPS 7.1 Home Security System User Manual

Open as PDF

of 1042

18-8

Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1

OL-19892-01

Chapter 18 Configuring the ASA 5500 AIP SSM

Creating Virtual Sensors for the ASA 5500 AIP SSM

• show context [detail]—Updated to display information about virtual sensors. In user context mode,

a new line is added to show the mapped names of all virtual sensors that have been allocated to this

context. In system mode, two new lines are added to show the real and mapped names of virtual

sensors allocated to this context.

You can assign multiple virtual sensors to a context. Multiple contexts can share one virtual sensor, and

when sharing, the contexts can have different mapped names (aliases) for the same virtual sensor. The

following procedure demonstrates how to add three security contexts in multiple mode and how to assign

virtual sensors to these security contexts.

Assigning Virtual Sensors to Contexts

To assign virtual sensors to adaptive security appliance contexts in multiple mode for the

ASA 5500 AIP SSM, follow these steps:

Step 1 Log in to the adaptive security appliance.

Step 2 Display the list of available virtual sensors.

asa# show ips

Sensor Name Sensor ID

----------- ---------

vs0 1

vs1 2

asa#

Step 3 Enter configuration mode.

asa# configure terminal

asa(config)#

Step 4 Enter multiple mode.

asa(config)# mode multiple

WARNING: This command will change the behavior of the device

WARNING: This command will initiate a Reboot

Proceed with change mode? [confirm] yes

asa(config)#

Step 5 Add three context modes to multiple mode.

asa(config)# admin-context admin

Creating context 'admin'... Done. (13)

asa(config)# context admin

asa(config-ctx)# allocate-interface GigabitEthernet0/0.101

asa(config-ctx)# allocate-interface GigabitEthernet0/1.102

asa(config-ctx)# allocate-interface Management0/0

asa(config-ctx)# config-url disk0:/admin.cfg

Cryptochecksum (changed): 0c34dc67 f413ad74 e297464a db211681

INFO: Context admin was created with URL disk0:/admin.cfg

INFO: Admin context will take some time to come up .... please wait.

asa(config-ctx)#

asa(config-ctx)# context c2

Creating context 'c2'... Done. (14)

asa(config-ctx)# allocate-interface GigabitEthernet0/0.103

asa(config-ctx)# allocate-interface GigabitEthernet0/1.104

asa(config-ctx)# config-url disk0:/c2.cfg

WARNING: Could not fetch the URL disk0:/c2.cfg

INFO: Creating context with default config

asa(config-ctx)#

asa(config-ctx)# context c3

Creating context 'c3'... Done. (15)

previous next