View Cart
0 Items | Total: US$0.00
Welcome,      Register

You are here

SEC0236 - FTD 6.1 NGIPSv IDS and IPS Modes (Part 1)

Rating: 
5
Average: 5 (2 votes)
Difficulty Level: 
0
Lab Document: 
<Please login to see the content>
The video shows you how to configure Cisco NGIPSv (aka Firepower Virtual Sensor)into IDS and IPS mode on Cisco UCS-E. We have a UCS-E installed on a branch router and we will start by sending copy of traffic to it (ie. IDS). We will then place the sensor logically inline (ie. IPS) by using two different methods.
 
Part 1 of this video covers NGIPSv in IDS mode
 
Topic:
  • NGIPSv on UCS-E ESXi
  • NGIPSv IDS Mode
    • Passive Zone
    • Packet Copy with Destination MAC rewrite
  • NGIPSv IPS Mode
    • Inline Zone
    • Inline Set
    • UCS-E External Interface
    • VRF Transitory Routing

About Author

Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.

2 comments

Thanks for the videos Metha. A quick thing, I am running my labs in EVE-NG so don't have a UCS-E module in a ISR.
I was wondering if I can have a CSR1000v redirect packets through UTD to an IPS sensor on the branch site ? Will that work ?

We are not familiar with EVE-NG but it's unlikely that would work as it is not the same setup as having UCS-E connected to router backplane although it does not hurt to give it a try.

Poll

Vote for the Next Video Series