Best Practices

This section looks into some of the important issues with Router MC. Following is a list of good practices:

  • Always apply upgrades to the latest version of Router MC and apply the new patches available on the Cisco website.

  • Be sure to install VMS on a dedicated machine, as VMS has its own web server and database server, which may cause resource confliction issues if another application is installed. Be sure to fulfill minimum requirements for running VMS server. As performance is dependent on the configuration of hardware not VMS software, it is always recommended to have a fast, powerful server.

  • If the Router MC is in a different network (VLAN) than the VPN device, be sure the network devices between the management server and the sensor allow SSH for Router MC in both directions.

  • Do not install VMS (Router MC) on Primary/Backup Domain Controller, IIS Server, and Terminal Server.

  • Be sure to back up the database regularly to prevent the loss of configuration on Router MC.

Cisco Network Security Troubleshooting Handbook
