[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

INLINE CISCO IPS

Posted on 2013-01-23
1
Medium Priority
?
498 Views
Last Modified: 2013-11-29
Hi,

I have CISCO VSS with many vlans. I would like to implement Cisco  FW and Cisco IPS  so all the traffic can pass through these devices.Any ideas how to design this setup or any related docs ?

Thanks
0
Comment
Question by:1w3
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 5

Accepted Solution

by:
Leeeee earned 2000 total points
ID: 38810785
There's a few options you can look at, if you want all internet bound traffic to pass through the IPS/FW, simply place a default route on the core pointing to the firewall that connects to the internet edge router. All traffic will be subject to inspection.

Inline placement is also a consideration. The below is a guide focused more on standalone IPS, but you could make it work with the IPS module in the firewall:

http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5729/ps5713/ps4077/prod_white_paper0900aecd806e724b.html

http://www.caysec.com/2010/09/intrusion-prevention-best-practice-ips.html
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Did you know SD-WANs can improve network connectivity? Check out this webinar to learn how an SD-WAN simplified, one-click tool can help you migrate and manage data in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Check out the latest tech news, community articles, and expert highlights in August's newsletter.
It’s time for spooky stories and consuming way too much sugar, including the many treats we’ve whipped for you in the world of tech. Check it out!
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question