Chapter 15
Configuring IDSM-2
Configuration Commands
The following configuration commands are all performed in either global configuration mode, interface
configuration mode, or VACL configuration submode:
•
•
78-16527-01
Global configuration mode
clock calendar valid
–
Sets the current calendar time as the switch time on bootup.
clock summer-time zone recurring
–
Sets the switch to use the summertime settings.
clock timezone zone offset
–
Sets the timezone for the switch/IDSM-2.
–
intrusion-detection module module_number management-port access-vlan
access_vlan_number
Configures the access vlan for the IDSM-2 command and control port.
–
intrusion-detection module module_number data-port data_port_number capture
allowed-vlan allowed_capture_vlan(s)
Configures the VLAN(s) for VACL capture.
–
intrusion-detection module module_number data-port data_port_number capture
Enables VACL capture for the specified IDSM-2 data port.
–
ip access-list extended word
Creates access lists for use in the VACL maps.
monitor session session {destination {interface interface interface-number} [ , | -] {vlan
–
vlan-id}}
Sets the destination for a SPAN session.
monitor session session {source {interface interface interface-number} | {vlan vlan-id}} [ , |
–
- | rx | tx | both]
Sets the sources for a SPAN session.
no power enable module slot_number
–
Shuts down IDSM-2 and removes power.
power enable module slot_number
–
Turns on the power for IDSM-2 if it is not already on.
vlan access-map map_name_sequence
–
Creates the VACL maps.
vlan filter map_name vlan-list vlans
–
Maps the VACL maps to VLANs.
Interface configuration mode
switchport
–
Sets the interface as a switch port.
–
switchport access vlan vlan
Sets the access VLAN for the interface.
Cisco Intrusion Prevention System Sensor CLI Configuration Guide for IPS 5.0
Catalyst and Cisco IOS Software Commands
15-31