Solved

INLINE CISCO IPS

Posted on 2013-01-23
1
462 Views
Last Modified: 2013-11-29
Hi,

I have CISCO VSS with many vlans. I would like to implement Cisco  FW and Cisco IPS  so all the traffic can pass through these devices.Any ideas how to design this setup or any related docs ?

Thanks
0
Comment
Question by:1w3
1 Comment
 
LVL 5

Accepted Solution

by:
Leeeee earned 500 total points
ID: 38810785
There's a few options you can look at, if you want all internet bound traffic to pass through the IPS/FW, simply place a default route on the core pointing to the firewall that connects to the internet edge router. All traffic will be subject to inspection.

Inline placement is also a consideration. The below is a guide focused more on standalone IPS, but you could make it work with the IPS module in the firewall:

http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5729/ps5713/ps4077/prod_white_paper0900aecd806e724b.html

http://www.caysec.com/2010/09/intrusion-prevention-best-practice-ips.html
0

Featured Post

Save on storage to protect fatherhood memories

You're the dad who has everything. This Father's Day, make sure your family memories are protected. My Passport Ultra has automatic backup and password protection to keep your cherished photos and videos safe. With up to 3TB, you have plenty of room to hold the adventures ahead.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Encryption for Business Encryption (https://en.wikipedia.org/wiki/Encryption) ensures the safety of our data when sending emails. In most cases, to read an encrypted email you must enter a secret key that will enable you to decrypt the email. T…
There are many Password Managers (PM) out there to choose from. PM's can help with your password habits and routines, but they should not be a crutch you rely on too heavily. I also have an article for company/enterprise PM's.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
A simple description of email encryption using a secure portal service. This is one of the choices offered by The Email Laundry for email encryption. The other choices are pdf encryption which creates an encrypted pdf of your email and any attachmen…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now