Installing network sensors correctly is an important component in protecting your network with Cisco Intrusion Prevention. Cisco provides appliance sensors that support a wide range of bandwidths and deployment locations. You can upgrade your sensors from 4.1 to 5.0 by using one of the following two methods:
Note For the diskless sensors (IDS 4215, IDS 4240, IDS 4255), you can install the 5.0 software only through the network since the sensors do not have a CD-ROM drive. When installing a new sensor (or upgrading via the recovery CD), you need to perform some basic initialization steps to get the sensor running. The basic appliance initialization tasks are as follows:
The setup CLI command configures the following parameters:
Some other tasks that you may need to perform during initialization include the following:
Beginning with Cisco IDS version 4.0, the appliance sensors have an extensive CLI that enables you to configure every aspect of your sensor's operation. Although the commands are different, using the CLI is very similar to using IOS. The CLI is divided into the multiple configuration modes, each of which provides a subset of the commands available to the user, such as the following:
Although the CLI enables you to configure every aspect of the sensor, configuring certain aspects, such as signature tuning, are easier to do in the graphical interfaces (such as Cisco IPS Device Manager). When troubleshooting, however, you may use this configuration capability to identify a problem, or you may create custom configuration scripts that you use to adjust the operation of your sensor. |