- Cisco Home Security System User's Manual

ManualsBrandsCisco Systems ManualsHome Safety ProductIPS4510K9

171

172

173

174

175

176

177

178

179

180

5-7

Cisco Intrusion Prevention System Sensor CLI Configuration Guide for IPS 7.2

OL-29168-01

Chapter 5 Configuring Virtual Sensors

Adding, Editing, and Deleting Virtual Sensors

Step 6

Assign an event action rules policy to this virtual sensor.

sensor(config-ana-vir-ano)# exit

sensor(config-ana-vir)# event-action-rules rules1

Step 7

Assign a signature definition policy to this virtual sensor.

sensor(config-ana-vir)# signature-definition sig1

Step 8

Enable HTTP advanced decoding.

sensor(config-ana-vir)# http-advanced-decoding true

Caution

Enabling HTTP advanced decoding severely impacts system performance.

Step 9

Assign the inline TCP session tracking mode. The default is virtual sensor mode, which is almost always

the best option to choose.

sensor(config-ana-vir)# inline-TCP-session-tracking-mode virtual-sensor

Step 10

Assign the inline TCP evasion protection mode. The default is strict mode, which is almost always the

best option to choose.

sensor(config-ana-vir)# inline-TCP-evasion-protection-mode strict

Step 11

Enable HTTP advanced decoding.

sensor(config-ana-vir)# http-advanced-decoding true

Step 12

Display the list of available interfaces.

sensor(config-ana-vir)# physical-interface ?

GigabitEthernet0/0 GigabitEthernet0/0 physical interface.

GigabitEthernet0/1 GigabitEthernet0/1 physical interface.

GigabitEthernet2/0 GigabitEthernet0/2 physical interface.

GigabitEthernet2/1 GigabitEthernet0/3 physical interface.

sensor(config-ana-vir)# physical-interface

sensor(config-ana-vir)# logical-interface ?

Step 13

Assign the promiscuous mode interfaces you want to add to this virtual sensor. Repeat this step for all

the promiscuous interfaces that you want to assign to this virtual sensor.

sensor(config-ana-vir)# physical-interface GigabitEthernet0/3

Step 14

Assign the inline interface pairs you want to add to this virtual sensor. You must have already paired the

interfaces.

sensor(config-ana-vir)# logical-interface inline_interface_pair_name

Step 15

Assign the subinterfaces of the inline VLAN pairs or groups you want to add to this virtual sensor. You

must have already subdivided any interfaces into VLAN pairs or groups.

sensor(config-ana-vir)# physical-interface GigabitEthernet2/0 subinterface-number

subinterface_number

Step 16

Verify the virtual sensor settings.

sensor(config-ana-vir)# show settings

name: vs1

-----------------------------------------------

description: virtual sensor 1 default:

signature-definition: sig1 default: sig0