44-10
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 44 Configuring IOS IPS Routers
Overview of Cisco IOS IPS Configuration
Pair Dialog Box
Use the Adding or Editing Pair dialog box to identify the interface and traffic direction pair to add to a
Cisco IOS IPS interface rule. For information on configuring interface rules, see Configuring IOS IPS
Interface Rules, page 44-8.
Navigation Path
From the Add or Edit IPS Rule dialog box, click the Add Row button to add a new pair, or select a pair
and click the Edit Row button. For information on opening the Add or Edit IPS Rule dialog box, see IPS
Rule Dialog Box, page 44-9.
Field Reference
ACL Name The name of the ACL policy object that defines which traffic should be
subject to IPS inspection. If you do not specify an ACL, all traffic on
the interface/direction pairs listed in the Interface Pairs table is subject
to inspection.
Tip If you create an ACL, permit entries identify traffic that is
subject to inspection, whereas deny entries identify traffic that
is exempt from inspection. Remember that there is an implicit
deny any any rule at the end of the ACL, so if your intention is
simply to identify exempt traffic, be sure to add a permit any
any rule at the end of the ACL.
Enter the name of the ACL policy object, or click Select to select it
from a list or to create a new object.
Interface Pairs table The interfaces and traffic direction pairs that are subject to IPS
inspection.
To add a pair, click the Add Row (+) button and fill in the Adding
Pair dialog box. See Pair Dialog Box, page 44-10.
To edit a pair, select it and click the Edit Row (pencil) button.
To delete a pair, select it and click the Delete Row (trash can)
button.
Table44-2 Add or Edit IPS Rule Dialog Box (Continued)
Element Description
Table44-3 Adding or Editing Pair Dialog Box
Element Description
Direction The traffic direction, with respect to the interface, on which IPS
inspection should be performed. Select one of the following:
In (default)—The IPS rule should be applied to inbound traffic.
Out—The IPS rule should be applied to outbound traffic.
Both—The IPS rule should be applied to both inbound and
outbound traffic.