27-3
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
Chapter27 Cisco IOS IPS
Create IPS
Create IPS: Welcome
This window provides a summary of the tasks to perform when you complete the
IPS Rule wizard.
Click Next to begin configuring a Cisco IOS IPS rule.
Create IPS: Select Interfaces
Choose the interfaces on which you want to apply the Cisco IOS IPS rule by
specifying whether the rule is to be applied to inbound traffic or outbound traffic.
If you check both the inbound and the outbound boxes, the rule applies to traffic
flowing in both directions.
For example: the following settings apply Cisco IOS IPS to inbound traffic on the
BRI 0 interface, and both inbound and outbound traffic on the FastEthernet 0
interface.
Create IPS: SDF Location
Cisco IOS IPS examines traffic by comparing it against signatures contained in a
signature definition file (SDF). The SDF can be located in router flash memo ry or
on a remote system that the router can reach. You can specify multiple SDF
locations so that if the router is not able to contact the first location, it can attempt
to contact other locations until it obtains an SDF.
Use the Add, Delete, Move Up, and Move Down buttons to add, remove, and
order a list of SDF locations that the router can attempt to contact to obtain an
SDF. The router starts at the first entry, and works down the list until it obtains an
SDF.
Cisco IOS images that support Cisco IOS IPS contain built-in signatu res. If you
check the box at the bottom of the window, the router will use the built-in
signatures only if it cannot obtain an SDF from any location in the list.
Interface Name Inbound Outbound
BRI 0 Check
FastEthernet 0 Check Check