Support User Manuals

Cisco Systems IPS 7.1 Home Security System User Manual

Open as PDF

of 1042

4-11

Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1

OL-19892-01

Chapter 4 Setting Up the Sensor

Changing Network Settings

• dns-primary-server {enabled | disabled}—Enables a DNS primary server:

–

address ip_address —Specifies the IP address of the DNS primary server.

• dns-secondary-server {enabled | disabled}—Enables a DNS secondary server:

–

address ip_address —Specifies the IP address of the DNS secondary server.

• dns-tertiary-server {enabled | disabled}—Enables the DNS tertiary server:

–

address ip_address —Specifies the IP address of the DNS tertiary server.

Configuring DNS and Proxy Servers for Global Correlation

To configure DNS and proxy servers to support global correlation, follow these steps:

Step 1 Log in to the sensor using an account with administrator privileges.

Step 2 Enter network settings submode.

sensor# configure terminal

sensor(config)# service host

sensor(config-hos)# network-settings

Step 3 Enable a proxy or DNS server to support global correlation:

a. Enable a proxy server.

sensor(config-hos-net)# http-proxy proxy-server

sensor(config-hos-net-pro)# address 10.10.10.1

sensor(config-hos-net-pro)# port 65

sensor(config-hos-net-pro)#

b. Enable a DNS server.

sensor(config-hos-net)# dns-primary-server enabled

sensor(config-hos-net-ena)# address 10.10.10.1

sensor(config-hos-net-ena)#

Step 4 Verify the settings.

sensor(config-hos-net)# show settings

network-settings

-----------------------------------------------

host-ip: 10.89.147.24/25,10.89.147.126 default: 192.168.1.2/24,192.168.1.1

host-name: sensor <defaulted>

telnet-option: enabled default: disabled

access-list (min: 0, max: 512, current: 1)

-----------------------------------------------

network-address: 0.0.0.0/0

-----------------------------------------------

-----------------------------------------------

ftp-timeout: 300 seconds <defaulted>

login-banner-text: <defaulted>

dns-primary-server

-----------------------------------------------

enabled

-----------------------------------------------

address: 10.10.10.1

-----------------------------------------------

-----------------------------------------------

dns-secondary-server

-----------------------------------------------

disabled

-----------------------------------------------

-----------------------------------------------

previous next