Cisco Systems ASA 5500 manual 19-15

Page 15

Chapter 19 Managing the AIP SSM and CSC SSM

Transferring an Image onto an SSM

To transfer an image onto an intelligent SSM, perform the following steps:

Step 1 Create or modify a recovery configuration for the SSM. To do so, perform the following steps:

a.Determine if there is a recovery configuration for the SSM. To do so, use the show module command with the recover keyword, as follows.

hostname# show module slot recover

where slot is the slot number occupied by the SSM.

If the recover keyword is not valid, a recovery configuration does not exist. The recover keyword of the show module command is available only when a recovery configuration exists for the SSM.

Note When the adaptive security appliance operates in multiple context mode, the configure keyword is available only in the system context.

If there is a recovery configuration for the SSM, the adaptive security appliance displays it. Examine the recovery configuration closely to ensure that it is correct, especially the Image URL field. The following example show a recovery configuration for an SSM in slot 1.

hostname# show module 1 recover Module 1 recover parameters. . .

Boot Recovery Image: Yes

Image URL:

tftp://10.21.18.1/csc-img

Port

IP

Address:

10.1.2.10

Port

Mask :

255.255.255.0

Gateway

IP Address:

10.1.2.254

b.If you need to create or modify the recovery configuration, use the hw-module module recover command with the configure keyword, as follows:

hostname# hw-module module slot recover configure

where slot is the slot number occupied by the SSM.

Complete the prompts as applicable. If you are modifying a configuration, you can keep the previously configured value by pressing Enter. The following example shows the prompts. For more information about them, see the entry for the hw-module module recover command in the Cisco Security Appliance Command Reference.

Image URL [tftp://0.0.0.0/]:

Port IP Address [0.0.0.0]:

VLAN ID [0]:

Gateway IP Address [0.0.0.0]:

Note Be sure the TFTP server you specify can transfer files up to 60 MB in size. Also, be sure the TFTP server can connect to the management port IP address that you specify for the SSM.

After you complete the prompts, the adaptive security appliance is ready to transfer to the SSM the image that it finds at the URL you specified.

Step 2 Transfer the image from the TFTP server to the SSM and restart the SSM. To do so, use the hw-module module recover command with the boot keyword, as follows.

hostname# hw-module module slot recover boot

where slot is the slot number occupied by the SSM.

 

 

Cisco Security Appliance Command Line Configuration Guide

 

 

 

 

 

 

OL-8629-01

 

 

19-15

 

 

 

 

 

Image 15
Contents Managing the AIP SSM About the AIP SSM19-1 Getting Started with the AIP SSM Diverting Traffic to the AIP SSM19-2 19-3 19-4 Sessioning to the AIP SSM and Running SetupManaging the CSC SSM About the CSC SSM19-5 Flow of Scanned Traffic with CSC SSM 19-619-7 Getting Started with the CSC SSM19-8 19-9 Determining What Traffic to Scan19-10 Common Network Configuration for CSC SSM ScanningLimiting Connections Through the CSC SSM Diverting Traffic to the CSC SSM19-11 19-12 19-13 Checking SSM Status19-14 Transferring an Image onto an SSM19-15 19-16
Related manuals
Manual 49 pages 36.1 Kb Manual 144 pages 23.87 Kb Manual 16 pages 48.09 Kb

ASA 5500 specifications

Cisco Systems ASA 5500 is a robust security appliance designed to provide advanced network security and protection against both internal and external threats. Ideal for organizations of various sizes, the ASA 5500 series offers a wide range of features that combine firewall capabilities with intrusion prevention, VPN support, and application control, among others.

One of the key features of the ASA 5500 is its stateful firewall technology. This allows the device to monitor active connections and enforce security policies based on the state of the traffic. By maintaining the context of network sessions, the firewall can make informed decisions on whether to allow or deny traffic based on established rules.

In addition to traditional firewall functionalities, the ASA 5500 series integrates advanced intrusion prevention capabilities. By analyzing traffic patterns and identifying known threats, the IPS functionality helps organizations defend against a variety of malicious activities, such as DDoS attacks, malware, and unauthorized access attempts. The ASA 5500 continuously updates its threat intelligence through Cisco's global threat database, enhancing its ability to detect emerging threats in real-time.

Virtual Private Network (VPN) support is another significant aspect of the ASA 5500 series. The device offers secure, encrypted connections for remote users and branch offices, ensuring safe access to corporate resources over the Internet. It supports both IPsec and SSL VPN protocols, allowing organizations to choose the best option for their specific needs. This capability is crucial for businesses that require a secure environment for remote work.

The ASA 5500 series also features extensive application control and visibility tools. These tools enable organizations to manage and control the applications running on their network, ensuring that only authorized applications can communicate through the firewall. This level of control helps to mitigate risks associated with unauthorized applications, which can lead to data breaches or reduced productivity.

Moreover, the ASA 5500 is designed with high availability and scalability in mind. Its clustering support ensures that multiple units can work together to provide redundancy and load balancing, enhancing both performance and reliability. This characteristic is especially important for organizations looking to maintain continuous operation during traffic spikes or hardware failures.

In summary, Cisco Systems ASA 5500 is an all-in-one security solution that combines stateful firewall protection, intrusion prevention, VPN capabilities, and application control. With its robust feature set and focus on security, it is well-suited for organizations seeking to protect their networks from an ever-evolving landscape of cyber threats. Whether for small businesses or large enterprises, the ASA 5500 provides the necessary tools to create a secure networking environment.