Chapter 15
Configuring IDSM-2
Committing the VACL writes the VACL and associated ACEs to NVRAM.
Map the VACL to the VLANs:
Step 5
console> (enable) set security acl map acl_name vlan_number
Example:
console> (enable) set security acl map CAPTUREALL 650
Mapping in progress.
ACL CAPTUREALL successfully mapped to VLAN 650.
Configure IDSM-2 ports (port 7 or 8) to be capture ports:
Step 6
console> (enable) set security acl capture module_number/port_number
Example:
console> (enable) set security acl capture 2/7
Successfully set 2/7 to capture ACL traffic.
Note
Cisco IOS Software
Use the following commands to configure VACLs to capture IPS traffic on VLANs.
The following options apply:
•
To configure VACLs to capture IPS traffic on VLANs, follow these steps:
Log in to the console.
Step 1
Enter global configuration mode:
Step 2
router# configure terminal
Step 3
Define the ACL:
router (config)# ip access-list [standard | extended] acl_name
Example:
router(config)# ip access-list standard CAPTUREALL
78-16527-01
For more information on trunk ports and ACLs, refer to the appropriate Catalyst 6500 Series
Switch Command Reference.
ip access-list—Named access list
extended—Extended Access List
–
hardware—Enable Hardware Fragment Handling
–
log-update—Control access list log updates
–
–
logging—Control access list logging
–
resequence—Resequence Access List
standard—Standard Access List
–
Cisco Intrusion Prevention System Sensor CLI Configuration Guide for IPS 5.0
Configuring the Catalyst Series 6500 Switch for IDSM-2 in Promiscuous Mode
15-13