Chapter 11. Sensor Maintenance


This chapter covers the following subjects:

  • Sensor Maintenance

  • Software Updates

  • Upgrading Sensor Software

  • Updating the Sensor's License

  • Image Recovery

  • Restoring Default Sensor Configuration

  • Resetting and Powering Down the Sensor

To keep your IPS operating effectively and efficiently, you need to maintain the software versions on your IPS devices. Cisco IPS software is continually being improved. Maintaining current software versions ensures that you have the latest functionality available in your Cisco IPS.

Updating the software on your Cisco IPS devices is vital to effectively protecting your network from attack. Cisco IPS is continually evolving, with new signatures and IPS functionality. Updating your IPS software regularly guarantees that your IPS has the latest signatures and IPS functionality.

"Do I Know This Already?" Quiz

The purpose of the "Do I Know This Already?" quiz is to help you decide if you really need to read the entire chapter. If you already intend to read the entire chapter, you do not necessarily need to answer these questions now.

The 10-question quiz, derived from the major sections in the "Foundation and Supplemental Topics" portion of the chapter, helps you determine how to spend your limited study time.

Table 11-1 outlines the major topics discussed in this chapter and the "Do I Know This Already?" quiz questions that correspond to those topics.

Table 11-1. "Do I Know This Already?" Foundation and Supplemental Topics Mapping

Foundation or Supplemental Topic

Questions Covering This Topic

Software Updates

1, 3

Upgrading Sensor Software

4, 8, 9

Updating the Sensor's License

5

Image Recovery

2

Restoring Default Sensor Configuration

7, 10

Resetting and Powering Down the Sensor

6


Caution

The goal of self-assessment is to gauge your mastery of the topics in this chapter. If you do not know the answer to a question or are only partially sure of the answer, you should mark this question wrong for purposes of the self-assessment. Giving yourself credit for an answer you correctly guess skews your self-assessment results and might provide you with a false sense of security.


1.

Which of the following is not a component of the Cisco IPS software filename?

  1. IPS version

  2. Service pack level

  3. Update type

  4. Signature version

  5. Software type

2.

Which command enables you to fix a corrupted image on your sensor?

  1. repair

  2. downgrade

  3. restore

  4. recover

  5. update

3.

If the filename of a software version is IDS-K9-sp-5.1-3-S36.rpm.pkg, what signature release is included in the software release?

  1. 36

  2. 5.1

  3. 3

  4. 1

  5. 1-3

4.

When you are upgrading sensor images by using the CLI, which of the following is not a valid file transfer protocol?

  1. FTP

  2. HTTP

  3. HTTPS

  4. SCP

  5. TFTP

5.

Which of the following is true if a Cisco IPS sensor running 5.0 software has an invalid license key?

  1. The sensor will not perform inline functionality.

  2. The sensor will not accept signature updates.

  3. The sensor will not operate in promiscuous mode.

  4. The sensor will not operate in promiscuous or inline mode.

6.

When rebooting the sensor via the sensor's CLI, which command do you use?

  1. reboot

  2. reload

  3. shutdown

  4. reset

  5. restart

7.

Which of the following sensor CLI commands is not valid?

  1. default service analysis-engine

  2. default service logger

  3. default service ssh-certificates

  4. default service trusted-certificates

  5. default service web-server

8.

When configuring daily automatic updates via IDM, which of the following is not a valid configuration?

  1. Check for updates every 3 hours, beginning at 2 seconds after 12:00

  2. Check for updates every 20 minutes, beginning at 6:00

  3. Check for updates every 60 minutes, beginning at 10 seconds after 6:00

  4. Check for updates every 120 minutes, beginning at 5 seconds after 19:00

9.

Which sensor CLI command enables you to return to a previous sensor software image?

  1. downgrade

  2. restore

  3. recover

  4. revert

10.

Which of the following is true?

  1. You can only use the sensor CLI to restore the sensor's default configuration.

  2. You can only use IDM to restore the sensor's default configuration.

  3. You can selectively restore the sensor's default configuration by using IDM.

  4. You can selectively restore the sensor's default configuration by using the sensor CLI.

The answers to the "Do I Know This Already?" quiz are found in the appendix. The suggested choices for your next step are as follows:

  • 8 or less overall score Read the entire chapter. This includes the "Foundation and Supplemental Topics" and "Foundation Summary" sections and the Q&A section.

  • 9 or 10 overall score If you want more review on these topics, skip to the "Foundation Summary" section and then go to the Q&A section. Otherwise, move to the next chapter.



CCSP IPS Exam Certification Guide
CCSP IPS Exam Certification Guide
ISBN: 1587201461
EAN: 2147483647
Year: 2004
Pages: 119
Authors: Earl Carter

Similar book on Amazon

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net