[ LiB ] |
You can access the command-line interface (CLI) by using the console port, Telnet and SSH to the command and control interface, or a direct monitor and keyboard ports on most models. However, the IDS-4215 does not have monitor and keyboard ports.
The IDS 4.0 supports SSH versions 1 and 2 protocols.
CLI locations:
Syntax | Location |
---|---|
Sensor# | Privilege exec |
Sensor(config)# | Global configuration |
Sensor(config-if)# | Command and control interface |
Sensor(config-ifs)# | Sensing interface |
Sensor(config-ifg)# | Interface group |
Sensor(config-Host-net)# | NetworkParams configuration |
The NetworkParams configures several sensor networking settings, such as IP address, default gateway, hostname, and access list.
The interface command-control mode enables you to configure an IP address for the sensor.
The NetworkAccess service allows the configuration of managed devices; it has the prompt sensor(config-NetworkAccess)# .
Configuring a managed device:
Set the VTY line password (Telnet).
Set the enable password. (Make it the same as the VTY line.)
Enable Telnet on the device.
Add the sensor to the trusted host list on the device.
WebServer Service that allows the configuration of the HTTP/HTTPS cidwebServer application. The command prompt is sensor(config-WebServer)# .
Virtual-sensor-configuration Level that allows you to fine-tune signature settings or even create custom signatures. The command prompt is sensor(config-vsc)# .
All signature tuning and custom signatures created are linked to this virtualSensor group.
To reset String.TCP settings back to default, use sensor(config-vsc)# reset-signature STRING.TCP all at the virtual-sensor-configuration level.
[ LiB ] |