Table Of Contents
Numerics - A - B - C - D - E - F - G - H - I - L - M - N - O - P - R - S - T - U - V -
Index
Numerics
10GE interface card
described 3-3, 4-4
illustration 3-4, 4-4
2SX interface card
described 3-3, 4-4
illustration 3-3, 4-4
4GE bypass interface card
configuration restrictions 3-5, 4-6
described 3-2, 3-4, 4-3, 4-5
illustration 3-3, 4-3
802.1q encapsulation
VLAN groups 1-15
A
access control list see ACL
accessing
Diagnostic Panel (IPS 4270-20) 4-40
IPS software 12-2
access lists misconfiguration A-26
actions
ACL changes 1-2
IP logs 1-3
multiple packet drop 1-3
TCP reset 1-2
active update bulletins 12-9
adaptive security appliance described 1-21, 1-23
AIM-IPS
branch router (illustration) 1-20
described 1-20
illustration 1-21
initializing 10-13
installing 5-5
installing system image 13-22
interfaces described 5-4
logging in 11-5
removing 5-5
restrictions 5-3
session command 11-5
sessioning 11-4, 11-5
setup command 10-13
software requirements 5-2
specifications 5-1
time sources 1-28, A-15
AIP-SSC-5
described 1-21
indicators (illustration) 6-2
indicators (table) 6-2
initializing 10-6
installing 6-2
logging in 11-6
models 1-21
password recovery A-10
removing 6-5
requirements 6-1
resetting A-65
session command 11-6
show module 1 command 6-4
specifications (table) 6-1
verifying status 6-4
AIP-SSM
described 1-23
indicators
described 7-2
illustration 7-2
initializing 10-16
installing 7-3
installing system image 13-26
logging in 11-6
memory specifications 7-2
models 1-23
password recovery A-10
recovering A-66
reimaging 13-25
removing 7-5
requirements 7-2
resetting A-65
session command 11-6
setup command 10-16
show module 1 command 7-4
specifications (table) 7-1
time sources 1-29, A-15
verifying status 7-5
alternate TCP reset interface 1-11
Analysis Engine
error messages A-22
IDM exits A-55
verify it is running A-20
anomaly detection disabling A-18
appliances
ACLs 1-2
application partition image 13-12
described 1-17
GRUB menu A-8
initializing 10-7
logging in 11-2
managers 1-17
models 1-17
password recovery A-8
restrictions 1-18
SPAN 1-18
TCP reset 1-2
terminal servers
described 1-18, 11-3, 13-14
setting up 1-18, 11-3, 13-14
time sources 1-27, A-14
upgrading recovery partition 13-5
application partition image recovering 13-12
applying software updates A-52
ARC
blocking not occurring for signature A-42
device access issues A-39
enabling SSH A-41
inactive state A-37
misconfigured MBS A-43
troubleshooting A-36
verifying device interfaces A-40
verifying status A-36
asymmetric traffic and disabling anomaly detection A-18
attack responses and TCP reset 1-2
authenticated NTP 1-28, 1-29, A-14, A-15
automatic setup 10-1
automatic upgrade
examples 13-10
information required 13-6
troubleshooting A-52
autonegotiation for hardware bypass 3-6, 4-6
auto-upgrade-option command 13-6
B
backing up
configuration A-2
current configuration A-4
back panel features
IPS-4240 2-3
IPS-4255 2-3
IPS-4260 3-7
IPS 4270-20 4-9
basic setup 10-3
blocking not occurring for signature A-42
C
cable management arm
converting 4-32
described 4-31
installing 4-28
cable pinouts
console port 1-36
RJ-45 1-36
RJ-45 to DB-25 1-37
RJ-45 to DB-9 1-37
cannot access sensor A-24
Catalyst software
IDSM-2
enabling full memory tests 8-12
powering down 8-15
powering up 8-15
resetting 8-14
cidDump obtaining information A-90
cisco
default password 11-2
default username 11-2
Cisco.com
accessing software 12-2
Active Update Bulletins 12-9
downloading software 12-1
IPS software 12-1
software downloads 12-1
Cisco IOS software
IDSM-2
enabling full memory tests 8-13
powering down 8-16
powering up 8-16
resetting 8-14
Cisco IPS software files 13-2
Cisco Security Center
described 12-11
URL 12-11
Cisco Services for IPS
service contract 12-12
supported products 12-12
clear events command 1-30, A-17, A-90
clearing
events A-90
statistics A-76
clear password command A-9, A-11
command and control interface
described 1-5
Ethernet 1-2
list 1-5
commands
auto-upgrade-option 13-6
clear events 1-30, A-17, A-90
clear password A-9, A-11
copy backup-config A-3
copy current-config A-3
copy license-key 12-15
debug module-boot A-66
downgrade 13-11
hw-module module 1 reset A-65
hw-module module slot_number password-reset A-10
session 11-5, 11-10
setup 10-1, 10-3, 10-7, 10-13, 10-16, 10-20, 10-24
show events A-87
show health A-68
show inventory 5-6, 9-5
show module 1 details A-65
show settings A-13
show statistics A-75
show statistics virtual-sensor A-22, A-75
show tech-support A-69
show version A-73
upgrade 13-3, 13-5
configuration files
backing up A-2
merging A-2
configuration restrictions
alternate TCP reset interface 1-11
inline interface pairs 1-11
inline VLAN pairs 1-11
interfaces 1-10
physical interfaces 1-10
VLAN groups 1-12
configuring
automatic upgrades 13-8
maintenance partition
IDSM-2 (Catalyst software) 13-31
IDSM-2 (Cisco IOS software) 13-35
upgrades 13-4
console port pinouts 1-36
converting cable management arm 4-32
copy backup-config command A-3
copy current-config command A-3
copy license-key command 12-15
correcting time on the sensor 1-30, A-17
creating the service account A-5
cryptographic account
Encryption Software Export Distribution Authorization from 12-2
obtaining 12-2
current configuration back up A-2
D
DC power supply (IPS-4240) 2-10
debug logging enable A-44
debug-module-boot command A-66
defaults
password 11-2
username 11-2
device access issues A-39
Diagnostic Panel
accessing 4-40
component list 4-13
illustration 4-13
indicators 4-13
disabling
anomaly detection A-18
password recovery A-12
disaster recovery A-6
displaying
events A-88
health status A-68
password recovery setting A-13
statistics A-76
tech support information A-70
version A-73
downgrade command 13-11
downgrading sensors 13-11
downloading software 12-1
duplicate IP addresses A-27
E
electrical safety guidelines 1-32
enabling
debug logging A-44
full memory tests
Catalyst software 8-12
Cisco IOS software 8-13
Encryption Software Export Distribution Authorization form
cryptographic account 12-2
described 12-2
ESD environment 1-34
Ethernet port indicators
IPS-4240 2-3
IPS-4255 2-3
IPS-4260 3-7
IPS 4270-20 4-10
event display A-88
Event Store and clearing events 1-30, A-17
event types A-86
expansion card interfaces naming conventions 3-4, 4-4
expansion card slots
IPS-4260 3-19, 3-21
IPS 4270-20 4-41
external product interfaces
issues A-20
troubleshooting A-21
F
fail-over testing 3-5, 4-5
fan indicators (IPS 4270-20) 4-47
fans (IPS 4270-20) 4-47
files
Cisco IPS 13-2
IDSM-2 password recovery A-11
finding the serial number 5-6, 9-5
front panel indicators
IPS-4240 2-3
IPS4255 2-3
IPS-4260 3-6
IPS 4270-20 4-8
front panel switches
IPS-4260 3-6
IPS 4270-20 4-8
FTP servers supported 13-2
G
grounding lugs (IPS-4260) 3-15
GRUB menu password recovery A-8
guidelines
electrical safety 1-32
power supplies 1-33
rack configuration 1-32
H
hardware bypass
autonegotiation 3-6, 4-6
configuration restrictions 3-5, 4-6
fail-over 3-5, 4-5
IPS-4260 3-4
IPS 4270-20 3-4, 4-5
supported configurations 3-4, 4-5
with software bypass 3-4, 4-5
HTTP/HTTPS servers 13-2
hw-module module 1 reset command A-65
hw-module module slot_number password-reset command A-10
I
IDM
Analysis Engine is busy A-55
will not load A-54
IDS appliances unsupported models 1-16
IDSM-2
command and control port A-63
configuring
maintenance partition (Catalyst software) 13-31
maintenance partition (Cisco IOS software) 13-35
described 1-25
enabling full memory tests
Catalyst software 8-12
Cisco IOS software 8-13
front panel 8-3
hot swapping 8-4, 8-8
initializing 10-20
installing
procedure 8-5
required tools 8-4
system image (Catalyst software) 13-29
system image (Cisco IOS software) 13-30
logging in 11-8
password recovery A-11
password recovery image file A-11
PFC 8-5
powering down
Catalyst software 8-15
Cisco IOS software 8-16
powering up
Catalyst software 8-15
Cisco IOS software 8-16
reimaging 13-28
removing 8-10
requirements 8-2
resetting
Catalyst software 8-14
Cisco IOS software 8-14
described 8-13
sessioning 11-8
setup command 10-20
shutdown
button 8-3
command 8-3
described 8-11
slot assignments 8-5
SPAN 1-25
specifications 8-1
status indicator 8-3
supported configurations 8-2, A-59
TCP reset port 8-3, A-64
time sources 1-28, A-14
upgrading
maintenance partition (Catalyst software) 13-39
maintenance partition (Cisco IOS software) 13-39
VACLs 1-25
verifying installation 8-9
IDS switch modules unsupported models 1-17
IME time synchronization problems A-57
initializing
AIM-IPS 10-13
AIP-SSC-5 10-6
AIP-SSM 10-16
appliances 10-7
IDSM-2 10-20
NME-IPS 10-24
sensors 10-1, 10-3
user roles 10-1
verifying 10-27
inline interface pair mode
configuration restrictions 1-11
described 1-13
inline VLAN pair mode
configuration restrictions 1-11
described 1-14
supported sensors 1-14
installation preparation 1-31
installer major version 12-6
installer minor version 12-6
installing
AIM-IPS 5-5
AIP-SSC-5 6-2
AIP-SSM 7-3
cable management arm 4-28
fans (IPS 4270-20) 4-47
IPS-4240 2-8
IPS-4255 2-8
IPS-4260 3-15
IPS 4270-20 4-35
license key 12-16
NME-IPS 9-5
sensor license 12-14
system image
AIP-SSM 13-26
IDSM-2 (Catalyst software) 13-29
IDSM-2 (Cisco IOS software) 13-30
IPS-4240 13-15
IPS-4255 13-15
IPS-4260 13-18
IPS 4270-20 13-20
NME-IPS 13-40
interface cards
IPS-4260
10GE card 3-3
2SX card 3-3
4GE card 3-2
installing 3-19
removing 3-19
IPS 4270-20
10GE card 4-4
2SX card 4-4
4GE card 4-3
installing 4-41
removing 4-41
interfaces
alternate TCP reset 1-5
command and control 1-5
configuration restrictions 1-10
described 1-4
port numbers 1-4
sensing 1-5, 1-6
slot numbers 1-4
support (table) 1-6
TCP reset 1-9
VLAN groups 1-5
internal health information (IPS 4270-20) 4-41
introducing
AIM-IPS 1-20
AIP-SSC-5 1-21
AIP-SSM 1-23
IDSM-2 1-25
NME-IPS 1-26
IPS-4240
accessories 2-5
back panel
illustration 2-3
indicators 2-3
described 2-1
features 2-2
front panel
illustration 2-2
indicators 2-3
installing 2-8
installing DC power supply 2-10
installing system image 13-15
introducing 2-1
password recovery A-8
rack mounting 2-6
reimaging 13-15
specifications 2-4
IPS-4255
accessories 2-5
back panel (illustration) 2-3
front panel
illustration 2-2
indicators 2-3
installing 2-8
installing system image 13-15
introducing 2-1
password recovery A-8
rack mounting 2-6
reimaging 13-15
specifications 2-4
IPS-4260
4GE bypass interface card 3-2
accessories kit 3-9
back panel features 3-7
chassis cover
removing 3-18
replacing 3-18
described 3-1
Ethernet port indicators 3-7
expansion card slots 3-19, 3-21
features 3-6
front panel
indicators 3-6
switches 3-6
grounding lugs 3-15
hardware bypass 3-4
installing 3-15
installing interface cards 3-19
installing system image 13-18
interface naming conventions 3-4
network ports 3-2
performance 3-2
power supplies 3-2
power supply indicators 3-8
rack mounting
2-post 3-12
4-post 3-10
reimaging 13-18
removing interface cards 3-19
sensing interfaces 3-2
specifications 3-8
supported interface cards 3-2
IPS 4270-20
4GE bypass interface card 4-2
accessing Diagnostic Panel 4-40
accessories kit 4-15
back panel features 4-9
chassis cover
removing 4-38
replacing 4-38
converting cable management arm 4-32
described 4-1
Diagnostic Panel
described 4-13
illustration 4-13
Ethernet port indicators
described 4-10
illustration 4-10
expansion card slots 4-41
extending from a rack 4-26
fan connector and indicator (illustration) 4-47
fan indicators 4-47
fans 4-47
features 4-7
front panel
indicators 4-8
switches 4-8
front view (illustration) 4-7
hardware bypass 3-4, 4-5
hot-pluggable power supplies 4-43
installation 4-35
installing
cable management arm 4-28
fans 4-47
in a rack 4-17
interface cards 4-41
power supplies 4-43
installing system image 13-20
interface naming conventions 4-4
maximum rack depth 4-16
network ports 4-2
performance 4-2
power supplies
described 4-3
indicators 4-11
rack requirements 4-16
rail system kit
described 4-15
minimum rack depth 4-16
redundant power supplies 4-43
reimaging 13-20
removing
interface cards 4-41
power supplies 4-43
sensing interfaces 4-2
shallow rack installation 4-18
specifications 4-14
switches and indicators (illustration) 4-7
T-15 Torx screwdriver 4-43
IPS modules time synchronization 1-29, A-16
IPS software
available files 12-1
obtaining 12-1
platform-dependent release examples 12-7
IPS software file names
major updates (illustration) 12-3
minor updates (illustration) 12-3
patch releases (illustration) 12-3
service packs (illustration) 12-3
IPv6
SPAN ports 1-13
switches 1-13
L
license key
installation 12-16
trial 12-12
licensing
described 12-12
IPS device serial number 12-12
Licensing pane
configuring 12-14
described 12-12
limitations for concurrent CLI sessions 2-1, 3-1, 4-1, 5-1, 6-1, 7-1, 8-1, 9-1, 11-1
logging in
AIM-IPS 11-5
AIP-SSC-5 11-6
AIP-SSM 11-6
appliances 11-2
IDSM-2 11-8
NME-IPS 11-10
sensors
SSH 11-11
Telnet 11-11
service role 11-2
terminal servers 1-18, 11-3, 13-14
user role 11-1
loose connections and sensors 4-49, A-22
M
maintenance partition
configuring
IDSM-2 (Catalyst software) 13-31
IDSM-2 (Cisco IOS software) 13-35
major updates described 12-3
manual block to bogus host A-41
master blocking sensor not set up properly A-43
merging configuration files A-2
MIBs supported A-18
minor updates described 12-4
modes
IDS 1-1
inline interface pair 1-13
inline VLAN pair 1-14
IPS 1-1
promiscuous 1-12
VLAN Groups 1-14
modules
AIM-IPS
described 1-20
specifications 5-1
AIP-SSC-5
described 1-21
specifications 6-1
AIP-SSM
described 1-23
memory specifications 7-2
specifications 7-1
IDSM-2 1-25, 8-3, 8-4, 8-5, 8-10
NME-IPS
described 1-26
specifications 9-1
N
Network Timing Protocol see NTP
NME-IPS
illustration 1-27
initializing 10-24
installing system image 13-40
introducing 1-26
logging in 11-10
reimaging 13-40
restrictions 9-3
session command 11-10
sessioning 11-9, 11-10
setup command 10-24
software requirements 9-2
specifications 9-1
time sources 1-28, A-15
verifying installation 5-6, 9-6
NTP
authenticated 1-28, 1-29, A-14, A-15
described 1-27, A-14
incorrect configuration 1-29, A-16
time synchronization 1-27, A-14
unauthenticated 1-28, 1-29, A-14, A-15
verifying configuration 1-30
O
obtaining
cryptographic account 12-2
IPS software 12-1
P
password recovery
AIM-IPS A-9
AIP-SSC-5 A-10
AIP-SSM A-10
appliances A-8
CLI A-12
described A-7
disabling A-12
GRUB menu A-8
IDSM-2 A-11
IPS-4240 A-8
IPS-4255 A-8
NME-IPS A-11
platforms A-7
ROMMON A-8
troubleshooting A-13
verifying A-13
patch releases described 12-4
performance (IPS 4270-20) 4-2
PFC described 8-5
physical connectivity issues A-30
physical interfaces configuration restrictions 1-10
platforms concurrent CLI sessions 2-1, 3-1, 4-1, 5-1, 6-1, 7-1, 8-1, 9-1, 11-1
Policy Feature Card see PFC
powering down
IDSM-2 (Catalyst software) 8-15
IDSM-2 (Cisco IOS software) 8-16
powering up
IDSM-2 (Catalyst software) 8-15
IDSM-2 (Cisco IOS software) 8-16
power supplies
hot-pluggable (IPS 4270-20) 4-43
IPS 4270-20
installing 4-43
removing 4-43
redundant (IPS 4270-20) 4-43
power supply guidelines 1-33
power supply indicators
IPS-4260 3-8
IPS 4270-20 4-11
preparing for sensor installation 1-31
prerequisites
AIM-IPS 5-2, 9-2
NME-IPS 5-2, 9-2
promiscuous mode
described 1-12
packet flow 1-12
SPAN ports 1-13
VACL capture 1-13
R
rack
airflow requirements 4-16
configuration guidelines 1-32
IPS 4270-20
extension 4-26
installation 4-17
requirements 4-16
space requirements 4-16
rack mounting
IPS-4260
2-post 3-12
4-post 3-10
rail system
maximum rack depth 4-16
minimum rack depth 4-16
rack hole-types (illustration) 4-15
round holes 4-15
square holes 4-15
threaded holes 4-15
rail system kit
cable management arm 4-28, 4-31
contents 4-16
IPS 4270-20 4-15
required tools 4-16
recover command 13-11
recovering
AIP-SSM A-66
application partition image 13-12
recovery partition upgrade 13-5
reimaging
AIM-IPS 13-22
AIP-SSM 13-25
appliances 13-11
described 13-1
IDSM-2 13-28
IPS-4240 13-15
IPS-4255 13-15
IPS-4260 13-18
IPS 4270-20 13-20
NME-IPS 13-40
sensors 12-8, 13-1
removing
AIM-IPS 5-5
AIP-SSC-5 6-5
AIP-SSM 7-5
chassis cover
IPS-4260 3-18
IPS 4270-20 4-38
last applied
service pack 13-11
signature update 13-11
replacing
chassis cover
IPS-4260 3-18
IPS 4270-20 4-38
requirements
AIP-SSC-5 6-1
AIP-SSM 7-2
racks
airflow 4-16
space 4-16
reset not occurring for a signature A-50
resetting
AIP-SSC-5 A-65
AIP-SSM A-65
IDSM-2 8-13
restoring the current configuration A-4
restrictions
AIM-IPS 5-3
NME-IPS 9-3
RJ-45 cable pinouts 1-36
RJ-45 to DB2-5 cable pinouts 1-37
RJ-45 to DB-9 cable pinouts 1-37
ROMMON
described 13-13
IPS-4240 13-15
IPS-4255 13-15
IPS-4260 13-18
IPS 4270-20 13-18, 13-20
password recovery A-8
remote sensors 13-13
serial console port 13-13
TFTP 13-14
round-trip time see RTT
RTT
described 13-14
TFTP limitation 13-14
S
scheduling automatic upgrades 13-8
security information on Cisco Security Center 12-11
sensing interfaces
described 1-6
interface cards 1-6
modes 1-6
sensors
access problems A-24
AIP-SSC-5 1-21
AIP-SSM 1-23
asymmetric traffic and disabling anomaly detection A-18
capturing traffic 1-1
comprehensive deployment 1-1
Comprehensive Deployment Solutions (illustration) 1-1
corrupted SensorApp configuration A-35
disaster recovery A-6
downgrading 13-11
electrical guidelines 1-32
IDS mode 1-1
incorrect NTP configuration 1-29, A-16
initializing 10-1, 10-3
interface support 1-6
IP address conflicts A-27
IPS mode 1-1
license 12-14
logging in
SSH 11-11
Telnet 11-11
loose connections 4-49, A-22
misconfigured access lists A-26
models 1-16
network topology 1-3
no alerts A-31, A-56
not seeing packets A-33
NTP time synchronization 1-27, A-14
physical connectivity A-30
power supply guidelines 1-33
preparing for installation 1-31
preventive maintenance A-2
process not running A-28
rack configuration guidelines 1-32
recovering the system image 12-8
reimaging 12-8, 13-1
sensing process not running A-28
setup command 10-1, 10-3, 10-7
site guidelines 1-31
supported 1-16
system images 12-8
TCP reset 1-2
time sources 1-27, A-14
troubleshooting software upgrades A-53
unsupported 1-16
upgrading 13-4
serial number and the show inventory command 5-6, 9-5
service account
creating A-5
described A-4
service-module ids-sensor slot/port session command 11-4, 11-9
service packs described 12-4
service role 11-2
session command
AIM-IPS 11-5
AIP-SSC-5 11-6
AIP-SSM 11-6
IDSM-2 11-8
NME-IPS 11-10
sessioning
AIM-IPS 11-5
AIP-SSM 11-6
IDSM-2 11-8
NME-IPS 11-10
setting up terminal servers 1-18, 11-3, 13-14
setup
automatic 10-1
command 10-1, 10-3, 10-7, 10-13, 10-16, 10-20, 10-24
simplified mode 10-1
shallow rack installation (IPS 4270-20) 4-18
show events command A-86, A-87
show health command A-68
show interfaces command A-85
show inventory command 5-6, 9-5
show module 1 details command A-65
show settings command A-13
show statistics command A-75
show statistics virtual-sensor command A-22, A-75
show tech-support command A-69
show version command A-72, A-73
signature/virus update files described 12-5
signature engine update files described 12-5
signatures and no TCP reset A-50
site guidelines 1-31
slot assignments
IDSM-2 8-5
supervisor engines 8-5
SNMP supported MIBs A-18
software bypass
supported configurations 3-4, 4-5
with hardware bypass 3-4, 4-5
software downloads Cisco.com 12-1
software file names
recovery (illustration) 12-6
signature/virus updates (illustration) 12-5
signature engine updates (illustration) 12-5
system image (illustration) 12-6
software release examples
platform-dependent 12-7
platform identifiers 12-8
platform-independent 12-6
software requirements
AIM-IPS 5-2
NME-IPS 9-2
software updates
supported FTP servers 13-2
supported HTTP/HTTPS servers 13-2
SPAN
appliances 1-18
IDSM-2 1-25
port issues A-30
specifications
AIM-IPS 5-1
AIP-SSC-5 6-1
AIP-SSM 7-1
IDSM-2 8-1
IPS-4240 2-4
IPS-4255 2-4
IPS-4260 3-8
IPS 4270-20 4-14
NME-IPS 9-1
subinterface 0 described 1-15
supported
FTP servers 13-2
HTTP/HTTPS servers 13-2
IDSM-2 configurations 8-2, A-59
switch commands for troubleshooting A-60
Switched Port Analyzer see SPAN
System Configuration Dialog
described 10-2
example 10-2
system image
installing
IPS-4240 13-15
IPS-4255 13-15
IPS-4260 13-18
system images sensors 12-8
T
T-15 Torx screwdriver (IPS 4270-20) 4-43
TAC
service account A-4
show tech-support command A-69
TCP reset interfaces
conditions 1-10
described 1-9
list 1-10
TCP reset port (IDSM-2) 8-3, A-64
TCP resets
described 1-2
not occurring A-50
terminal server setup 1-18, 11-3, 13-14
testing fail-over 3-5, 4-5
TFTP and RTT 13-14
TFTP servers
recommended
UNIX 13-14
Windows 13-14
time and the sensor 1-27, A-14
time correction on the sensor1-30, A-17
time sources
AIM-IPS 1-28, A-15
AIP-SSM 1-29, A-15
appliances 1-27, A-14
IDSM-2 1-28, A-14
NME-IPS 1-28, A-15
time synchronization (IPS modules) 1-29, A-16
trial license key 12-12
troubleshooting
AIP-SSC-5 reset A-65
AIP-SSM
commands A-65
debugging A-66
recovering A-66
reset A-65
Analysis Engine busy A-55
applying software updates A-52
ARC
blocking not occurring for signature A-42
device access issues A-39
enabling SSH A-41
inactive state A-37
misconfigured MBS A-43
verifying device interfaces A-40
automatic update A-52
cannot access sensor A-24
cidDump A-90
cidLog messages to syslog A-49
communication A-23
corrupted SensorApp configuration A-35
debug logger zone names (table) A-48
debug logging A-44
Diagnostic Panel (IPS 4270-20) 4-40
disaster recovery A-6
duplicate sensor IP addresses A-27
enabling debug logging A-44
external product interfaces A-21
gathering information A-68
IDM cannot access sensor A-55
IDM will not load A-54
IDSM-2
command and control port A-63
diagnosing problems A-58
not online A-62, A-63
serial cable A-64
status indicator A-60
switch commands A-60
IME time synchronization A-57
IPS modules time drift 1-29, A-16
manual block to bogus host A-41
misconfigured access list A-26
no alerts A-31, A-56
NTP A-50
password recovery A-13
physical connectivity issues A-30
preventive maintenance A-2
reset not occurring for a signature A-50
sensing process not running A-28
sensor events A-86
sensor loose connections 4-49, A-22
sensor not seeing packets A-33
sensor software upgrade A-53
service account A-4
show events command A-86
show interfaces command A-85
show statistics command A-75
show tech-support command A-69, A-70
show version command A-72
software upgrades A-51
SPAN port issue A-30
upgrading to 6.x A-52
verifying Analysis Engine is running A-20
verifying ARC status A-36
U
unassigned VLAN groups described 1-15
unauthenticated NTP 1-28, 1-29, A-14, A-15
unsupported sensors 1-16
upgrade command 13-3, 13-5
upgrading
maintenance partition
IDSM-2 (Catalyst software) 13-39
IDSM-2 (Cisco IOS software) 13-39
minimum required version 12-8
recovery partition 13-5, 13-11
to 6.2 12-8
to 6.x A-52
URLs for Cisco Security Center 12-11
using
debug logging A-44
TCP reset interfaces 1-10
V
VACLs and IDSM-2 1-25
verifying
IDSM-2 installation 8-9
NME-IPS installation 5-6, 9-6
NTP configuration 1-30
password recovery A-13
sensor initialization 10-27
sensor setup 10-27
VLAN access control list see VACL
VLAN groups
802.1q encapsulation 1-15
configuration restrictions 1-12
deploying 1-15
described 1-14
switches 1-15