Foundation Summary


The Cisco IDSM integrates Cisco IPS functionality directly into your Catalyst 6000 family switch.

The IDSM-2 is a single-slot switch card that provides the following enhanced capabilities:

  • Performance 600 Mbps

  • Monitoring interfaces Gigabit

  • Command and control interface Gigabit

  • TCP reset interface Gigabit

  • Optional interface No

  • Performance upgrade No

Your switch operating system must match one of the following requirements:

  • Catalyst OS 7.5(1) or later (on supervisor engine)

  • Cisco IOS Release 12.1(19)E or later

If you have Catalyst OS 7.5(1) or later, you also must have one of the following supervisor engines:

  • Supervisor Engine 1A

  • Supervisor Engine 1A/Policy Feature Card 2 (PFC2)

  • Supervisor Engine 1A/MSFC1

  • Supervisor Engine 1A/MSFC2

  • Supervisor Engine 2

  • Supervisor Engine 2/MSFC2

If you have IOS Release 12.1(19)E or later, you also must have one of the following supervisor engines:

  • Supervisor Engine 1a with MSFC2

  • Supervisor Engine 2 with MSFC2

Besides increasing the bandwidth capacity of the IDSM-2 (compared to the original IDSM), the IDSM-2 provides the following capabilities or features:

  • Merges switching and security into a single chassis

  • Provides ability to monitor multiple VLANs

  • Does not impact switch performance

  • Supports attacks and signatures equal to appliance sensor

  • Uses the same code base as the appliance sensor

  • Supports improved management techniques (such as IDM)

To enable your IDSM-2 to become a functional component of your Cisco IPS, you need to perform the following basic initialization tasks:

  • Verify IDSM-2 status

  • Initialize the IDSM-2

  • Configure the command and control port

  • Configure the switch traffic capture settings

The basic initialization tasks for the IDSM-2 are the same as those for the appliance sensor. These tasks include the following:

  • Accessing the IDSM-2 CLI

  • Logging in to the IDSM-2

  • Running the setup command

  • Configuring trusted hosts

  • Entering the network communication parameters

To perform its operation, the IDSM-2 uses several internal ports that fall into the following three functional categories:

  • TCP reset port (port 1)

  • Command and control port (port 2)

  • Monitoring ports (ports 7 and 8)

To prevent corruption of the IDSM-2, you must shut it down properly. To properly shut down the IDSM-2, you need to log in to the IDSM-2 and execute the reset command.

The front panel of the IDSM-2 contains a single-status light-emitting diode (LED) that can be in one of the states listed in Table 13-4.

Table 13-4. IDSM-2 Status LED

Color

Description

Green

All diagnostics tests have passed IDSM is operational.

Red

A diagnostic other than an individual port test has failed.

Amber

The IDSM is

 

  • Running through its boot and self-test diagnostic sequence.

  • Disabled.

  • In the shutdown state.

Off

The IDSM power is off.


The show module switch command enables you to display information about the line cards that you have installed in your Catalyst 6500 switch.

When using CatOS, you can use the show port and show trunk commands to view the status of your switch ports.



CCSP IPS Exam Certification Guide
CCSP IPS Exam Certification Guide
ISBN: 1587201461
EAN: 2147483647
Year: 2004
Pages: 119
Authors: Earl Carter

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net