Cisco IPS-4255-K9 Installation Guide - Page 194
Basic Sensor Setup
UPC - 746320951096
View all Cisco IPS-4255-K9 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 194 highlights
Basic Sensor Setup Chapter 10 Initializing the Sensor For More Information For detailed information on the global correlation features, for IDM refer to Configuring Global Correlation, for IME refer to Configuring Global Correlation, and for the CLI, refer to Configuring Global Correlation. Basic Sensor Setup You can perform basic sensor setup using the setup command, and then finish setting up the sensor using the CLI, IDM, or IME. To perform basic sensor setup using the setup command, follow these steps: Step 1 Log in to the sensor using an account with administrator privileges. Note Both the default username and password are cisco. Step 2 Step 3 Step 4 Step 5 Step 6 Step 7 The first time you log in to the sensor you are prompted to change the default password. Passwords must be at least eight characters long and be strong, that is, not be a dictionary word. After you change the password, basic setup begins. Enter the setup command. The System Configuration Dialog is displayed. Specify the hostname. The hostname is a case-sensitive character string up to 64 characters. Numbers, "_" and "-" are valid, but spaces are not acceptable. The default is sensor. Specify the IP interface. The IP interface is in the form of IP Address/Netmask,Gateway: X.X.X.X/nn,Y.Y.Y.Y, where X.X.X.X specifies the sensor IP address as a 32-bit address written as 4 octets separated by periods, nn specifies the number of bits in the netmask, and Y.Y.Y.Y specifies the default gateway as a 32-bit address written as 4 octets separated by periods. Enter yes to modify the network access list. a. If you want to delete an entry, enter the number of the entry and press Enter, or press Enter to get to the Permit line. b. Enter the IP address and netmask of the network you want to add to the access list. For example, 10.0.0.0/8 permits all IP addresses on the 10.0.0.0 network (10.0.0.0-10.255.255.255) and 10.1.1.0/24 permits only the IP addresses on the 10.1.1.0 subnet (10.1.1.0-10.1.1.255). If you want to permit access to a single IP address than the entire network, use a 32-bit netmask. For example, 10.1.1.1/32 permits just the 10.1.1.1 address. c. Repeat Step b until you have added all networks that you want to add to the access list, and then press Enter at a blank permit line to go to the next step. You must configure a DNS server or an HTTP proxy server for Global Correlation to operate. a. Enter yes to add a DNS server, and then enter the DNS server IP address. b. Enter yes to add an HTTP proxy server, and then enter the HTTP proxy server IP address and port number. 10-4 Cisco Intrusion Prevention System Appliance and Module Installation Guide for IPS 7.0 OL-18504-01