Home > Articles > Cisco Network Technology > Security > Network Security Using Cisco IOS IPS

Network Security Using Cisco IOS IPS

Summary

This chapter described how intrusion detection system (IDS) and intrusion prevention system (IPS) technology embedded in Cisco host- and network-based IDS and IPS solutions fight Internet worms and viruses in real time. More precisely, you have learned how

  • A signature is a set of rules that an IDS and an IPS use to detect typical intrusive activity.
  • To use Cisco SDM to configure Cisco IOS IPS on the router or security device, choose Configure > Intrusion Prevention > Create IPS in Cisco SDM and click the Launch IPS Rule Wizard button.
  • Cisco IOS IPS combines existing Cisco IDS and IPS product features.
  • To configure Cisco IOS IPS on the router or security device, click the Launch IPS Rule Wizard button in Cisco SDM.
  • Cisco IOS IPS prevents intrusion by comparing traffic against the signatures of known attacks.
  • Cisco IOS IPS alarms are communicated using SDEE and syslog.
  • The command show ip ips all displays all the available IPS information.

References

For additional information, refer to these resources:

10. Review Questions | Next Section Previous Section