Thursday, August 7, 2014

IPS Initial Setup

Cisco IPS Sensor Family

IPS 4200 Series Sensors





Device: IPS 4240, GNS3, Multilayer Switch, Windows 7

Special requirements: jre 1.7.~ (By default SSL 2.0 is disabled. It must be enabled in java advanced option in Windows 7 which is a management computer)

e0 port in GNS3 IDS 4240 is Out-of-Band Management port.

Boot up IPS -> ID & Password (by default Username: cisco, Password: cisco) -> change default Password

Type 'setup'
It will ask for ip address and default gateway, by default 192.168.1.2/24, 192.168.1.1.
Change to '192.168.2.120/24,192.168.2.1'
Next, set hostname 'MSensor'
Next, modify current access list, by default '192.168.1.0/24', delete 192.168.1.0/24 and permit 192.168.2.0/24.
Next, just Enter until 'Exit Option' shows up.
Type '2' which is save the configuration and exit.

Now you can connect IPS from Windows 7 (192.168.2.254/24)
Open internet explorer, and go to https://192.168.2.120


The certificate is self-signed certificate, and that's why there is certificate warning massage.

Click 'Run IDM'


Don't forget the java setting: enable SSL 2.0, and add 'https://192.168.2.120' to exception site list.



This is the Cisco IDM.

No comments:

Post a Comment