Cisco IPS 7.1 Installationsanleitung Seite 321
- Seite / 422
- Inhaltsverzeichnis
- FEHLERBEHEBUNG
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
E-51
Cisco Intrusion Prevention System Appliance Hardware Installation Guide for IPS 7.1
OL-24002-01
Appendix E Troubleshooting
Troubleshooting the Appliance
Caution The syslog is much slower than logApp (about 50 messages per second as opposed to 1000 or so). We
recommend that you enable debug severity on one zone at a time.
TCP Reset Not Occurring for a Signature
If you do not have the event action set to reset, the TCP reset does not occur for a specific signature.
Note TCP Resets are not supported over MPLS links or the following tunnels: GRE, IPv4 in IPv4, IPv6 in
IPv4, or IPv4 in IPv6.
To troubleshoot a reset not occurring for a specific signature, follow these steps:
Step 1 Log in to the CLI.
Step 2 Make sure the event action is set to TCP reset.
sensor# configure terminal
sensor(config)# service signature-definition sig0
sensor(config-sig)# signatures 1000 0
sensor(config-sig-sig)# engine atomic-ip
sensor(config-sig-sig-ato)# event-action reset-tcp-connection|produc-alert
sensor(config-sig-sig-ato)# show settings
atomic-ip
-----------------------------------------------
event-action: produce-alert|reset-tcp-connection default: produce-alert
fragment-status: any <defaulted>
specify-l4-protocol
-----------------------------------------------
no
-----------------------------------------------
-----------------------------------------------
-----------------------------------------------
specify-ip-payload-length
-----------------------------------------------
no
-----------------------------------------------
-----------------------------------------------
-----------------------------------------------
specify-ip-header-length
-----------------------------------------------
no
-----------------------------------------------
-----------------------------------------------
-----------------------------------------------
specify-ip-tos
-----------------------------------------------
--MORE--
Step 3 Exit signature definition submode.
sensor(config-sig-sig-ato)# exit
sensor(config-sig-sig)# exit
sensor(config-sig)# exit
Apply Changes:?[yes]:
Step 4 Press Enter to apply the changes or type no to discard them.
- Text Part Number: OL-24002-01 1
- CONTENTS 3
- B Initializing the Sensor B-1 7
- C Obtaining Software C-1 7
- E Troubleshooting E-1 9
- Contents 10
- OL-24002-01 10
- F Cable Pinouts F-1 12
- About This Guide 13
- Organization 14
- Conventions 14
- Related Documentation 15
- Submitting a Service Request 16
- Introducing the Sensor 17
- How the Sensor Functions 18
- Your Network Topology 19
- Tuning the IPS 19
- Sensor Interfaces 20
- Command and Control Interface 21
- Sensing Interfaces 22
- Interface Support 22
- TCP Reset Interfaces 27
- Interface Restrictions 28
- Interface Modes 30
- Figure 1-2 Promiscuous Mode 31
- • Monitor session 31
- Inline Interface Pair Mode 32
- Inline VLAN Pair Mode 32
- VLAN Group Mode 33
- Supported Sensors 34
- Table 1-4 Supported Sensors 35
- IPS Appliances 36
- Appliance Restrictions 37
- The Sensor and Time Sources 39
- Step 1 Log in to the sensor 40
- Time Sources and the Sensor 42
- Installation Preparation 43
- Safety Recommendations 44
- Safety Recommendations 45
- Working in an ESD Environment 46
- General Site Requirements 47
- Power Supply Considerations 48
- Configuring Equipment Racks 48
- Installing the IPS 4270-20 49
- Supported Interface Cards 52
- Hardware Bypass 53
- 4GE Bypass Interface Card 54
- • AC power present 60
- • Standby mode 60
- Diagnostic Panel 62
- Rail System Kit Contents 65
- < 28.5” 68
- For threaded-hole racks: 70
- Installing the IPS 4270-20 84
- Installing and Removing Fans 98
- Product Overview 102
- Specifications 102
- Specifications 103
- Accessories 104
- Front and Back Panel Features 105
- Rack Mount Installation 109
- Rack Mount Installation 110
- For More Information 111
- 11 2 3 4 117
- Installing DC Input Power 121
- Statement 122 123
- • Ground lead wire (middle) 124
- Figure 4-19 Ground Wires 124
- Chassis Features 131
- Cisco ASA 5585-X IPS SSP 132
- Cisco IPS 4520 132
- Chassis Features 135
- Memory Configurations 139
- Supported SFP/SFP+ Modules 139
- Table 5-7 SFP/SFP+ Modules 140
- SFP/SFP+ 141
- Package Contents 150
- Step 13 Power on the sensor 160
- Step 1 Power off the sensor 161
- Memory Specifications 168
- Indicators 169
- Removing the ASA 5500 AIP SSM 171
- Front Panel Features 176
- Memory Requirements 180
- SFP/SFP+ Modules 181
- Installing SFP/SFP+ Modules 183
- Logging In to the Sensor 189
- Logging In to the Appliance 190
- Logging In to the Sensor 196
- Initializing the Sensor 197
- Simplified Setup Mode 198
- System Configuration Dialog 198
- Use NTP?[no]: yes 199
- Basic Sensor Setup 200
- Advanced Setup 203
- Step 29 Reboot the appliance 208
- Verifying Initialization 221
- Verifying Initialization 223
- Obtaining Software 225
- IPS 7.1 Files 226
- IPS Software Versioning 227
- IPS-[sig]-[S]-req-E1.pkg 228
- IPS Software Release Examples 229
- Accessing IPS Documentation 231
- Understanding Licensing 232
- Installing the License Key 236
- Uninstalling the License Key 238
- Upgrading the Sensor 243
- Upgrade Notes and Caveats 244
- Manually Upgrading the Sensor 244
- Downgrading the Sensor 251
- Installing System Images 253
- TFTP Servers 254
- Installing System Images 270
- Troubleshooting 271
- Cisco Bug Search 272
- Preventive Maintenance 272
- Creating the Service Account 275
- Disaster Recovery 276
- Recovering the Password 277
- Using the GRUB Menu 278
- Using ROMMON 279
- Using the ASDM 281
- Disabling Password Recovery 283
- Time Sources and the Sensor 285
- The ASA IPS Modules 286
- Correcting Time on the Sensor 287
- Supported MIBs 288
- Troubleshooting the Appliance 292
- Analysis Engine is Busy 294
- Communication Problems 295
- Step 1 Log in to the CLI 298
- The SensorApp and Alerting 299
- Unable to See Alerts 302
- Check for alerts 303
- Sensor Not Seeing Packets 304
- Blocking 306
- Verifying ARC is Running 307
- Device Access Issues 310
- Enabling Debug Logging 315
- Step 11 View the zone names 316
- Zone Names 319
- Software Upgrades 322
- Issues With Automatic Update 323
- Troubleshooting the IDM 325
- Troubleshooting the IME 327
- Not Supported Error Message 328
- Installation Error 328
- Health and Status Information 329
- Failover Scenarios 331
- Configuration Examples 332
- IPS Reloading Messages 334
- • 1300.0 337
- • 1304.0 337
- • 1305.0 337
- IPS Not Loading 340
- Gathering Information 347
- Tech Support Information 348
- Varlog Files 349
- Tech Support Command Output 350
- Version Information 352
- Statistics Information 355
- Displaying Statistics 356
- Interfaces Information 367
- Events Information 368
- Sensor Events 369
- Displaying Events 369
- Clearing Events 372
- Gathering Information 374
- Cable Pinouts 375
- Console Port (RJ-45) 376
- RJ-45 to DB-9 or DB-25 377
- Appendix F Cable Pinouts 378
- RJ-45 to DB-9 or DB-25 378
- Numerals 379
- Glossary 380
- Numerics 405
Verwandte Produkte und Handbücher für Vernetzung Cisco IPS 7.1
Vernetzung Cisco SMTP Bedienungsanleitung
(3 Seiten)
(3 Seiten)
Vernetzung Cisco 815 Bedienungsanleitung
(8 Seiten)
(8 Seiten)
Vernetzung Cisco WRT54GC Betriebsanweisung
(83 Seiten)
(83 Seiten)
Vernetzung Cisco uBR900 Series Spezifikationen
(138 Seiten)
(138 Seiten)
Vernetzung Cisco 828 Installationsanleitung
(10 Seiten)
(10 Seiten)
Vernetzung Cisco CB20A Bedienungsanleitung
(6 Seiten)
(6 Seiten)
Vernetzung Cisco 7300-6T3 Spezifikationen
(54 Seiten)
(54 Seiten)
Vernetzung Cisco uBR904 Bedienungsanleitung
(22 Seiten)
(22 Seiten)
Vernetzung Cisco WAE-611-K9 Bedienungsanleitung
(44 Seiten)
(44 Seiten)
Vernetzung Cisco 2525 - 2525 TR Router Handbuch
(40 Seiten)
(40 Seiten)
Vernetzung Cisco CTX2500 Betriebsanweisung
(530 Seiten)
(530 Seiten)
Vernetzung Cisco AG241 Betriebsanweisung
(41 Seiten)
(41 Seiten)
© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.045 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern