Use
the show configuration command or the more current-config command to verify sensor settings. Cisco IPS
Sensor is covered in detail in Chapter 20, "Network Intrusion Prevention."
IPS Device Manager (IDM)
IDM is a web-based Java application to configure and manage the sensor. The web server for IDM resides on the
sensor. IDM can be accessed through the common web browsers such as Internet Explorer, Netscape, or
Mozilla. IDM is suitable for managing small deployments such as 3 to 5 sensors in the network. For large-scale
sensor deployments, Cisco Security Manager is used. Both IDM and Cisco Security Manager are discussed in
Chapter 24.
HTTP/HTTPS Access
By default, sensor appliance has built-in web server service enabled with HTTPS on the standard TCP port 443
and enabled to use Transport Layer Security (TLS) and Secure Socket Layer (SSL) protocols.
SSL enables encrypted communications between a client web browser and the sensor appliance. If required,
TLS/SSL can be disabled, and the standard HTTP port can be used instead, but this is not recommended
because HTTP is insecure. The web server port can be changed from its default.
Note
If the web services are changed from HTTPS to HTTP or if the web server port is changed, you should
specify the port in the URL address in the browser when connecting to the IDM in the format
https://sensor_ip_address:port or http://sensor_ip_address:port (for example, https://10.
Pages:
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158