SIC Practical6 by STUD - Talks
SIC Practical6 by STUD - Talks
Download as pdf or txt
Security In Computing Practical’s
Practical 6: Configure IOS Intrusion Prevention System (IPS)
Using the CLI
Topology:
Addressing Table:
Device Interface IP Address Subnet Mask Default Gateway
gig0/0 192.168.1.1 255.255.255.0 N/A
R1 Se0/1/0 10.1.1.1 255.255.255.252 N/A
Se0/1/0 10.1.1.2 255.255.255.252 N/A
R2 Se0/1/1 10.2.2.2 255.255.255.252 N/A
R3 gig0/0 192.168.3.1 255.255.255.0 N/A
Se0/1/0 10.2.2.1 255.255.255.252 N/A
Syslog NIC 192.168.1.50 255.255.255.0 192.168.1.1
PC-A NIC 192.168.1.2 255.255.255.0 192.168.1.1
PC-C NIC 192.168.3.2 255.255.255.0 192.168.3.1
Objectives
• Enable IOS IPS.
• Configure logging.
• Modify an IPS signature.
• Verify IPS
STUD--Talks: Follow us on for more videos and updates
Security In Computing Practical’s
Part 1: Configure router
Step 1: Configure secret on router
Execute command on all routers
R(config)# enable secret enpa55
Step 2: Configure console password on router
Execute command on all routers
R(config)# line console 0
R(config-line)# password conpa55
R(config-line)# login
Step 3: Configure SSH login on router
Execute command on all routers
R(config)# ip domain-name ccnasecurity.com
R(config)# username admin secret adminpa55
R(config)# line vty 0 4
R(config-line)# login local
R(config)# crypto key generate rsa
How many bits in the modulus [512]: 1024
Step 4: Configure OSPF on routers
Execute command on router 1
R1(config)#router ospf 1
R1(config-router)# network 192.168.1.0 0.0.0.255 area 0
R1(config-router)# network 10.1.1.0 0.0.0.3 area 0
Execute command on router 2
R2(config)#router ospf 1
STUD--Talks: Follow us on for more videos and updates
Security In Computing Practical’s
R2(config-router)# network 10.1.1.0 0.0.0.3 area 0
R2(config-router)# network 10.2.2.0 0.0.0.3 area 0
Execute command on router 3
R3(config)#router ospf 1
R3(config-router)# network 10.2.2.0 0.0.0.3 area 0
R3(config-router)# network 192.168.3.0 0.0.0.255 area 0
Part 2: Enable IOS IPS
Step 1: Enable the Security Technology package
R1# show version
(When command “show version” is given the above result comes, remember for further
practical’s)
R1(config)# license boot module c1900 technology-package securityk9
(Type yes)
R1# copy run start
R1# reload
R1# show version
STUD--Talks: Follow us on for more videos and updates
Security In Computing Practical’s
(When command “show version” is given again the above result comes to check If security
is enabled or not, remember for further practical’s)
Step 2: Verify network connectivity
PCA> ping 192.168.3.2
(Successful)
PCC> ping 192.168.1.2
(Successful)
Step 3: Create an IOS IPS configuration directory in flash.
R1# mkdir ipsdir
Create directory filename [ipsdir]? <Enter>
Step 4: Configure the IPS signature storage location.
R1(config)# ip ips config location flash:ipsdir
Step 5: Create an IPS rule
R1(config)# ip ips name iosips
Step 6: Enable logging.
R1(config)# ip ips notify log
R1# clock set hr:min:sec date month year
R1(config)# service timestamps log datetime msec
R1(config)# logging host 192.168.1.50
Step 7: Configure IOS IPS to use the signature categories.
R1(config)# ip ips signature-category
R1(config-ips-category)# category all
R1(config-ips-category-action)# retired true
STUD--Talks: Follow us on for more videos and updates
Security In Computing Practical’s
R1(config-ips-category-action)# exit
R1(config-ips-category)# category ios_ips basic
R1(config-ips-category-action)# retired false
R1(config-ips-category-action)# exit
R1(config-ips-cateogry)# exit
Do you want to accept these changes? [confirm] <Enter>
Step 8: Apply the IPS rule to an interface.
R1(config)# int gig0/0
R1(config-if)# ip ips iosips out
Step 9: Use show commands to verify IPS.
R1# show ip ips all
(Output)
Step 10: View the syslog messages.
Click the Syslog server->Services tab-> SYSLOG
(Output)
Part 3: Modify the Signature
Step 1: Change the event-action of a signature.
R1(config)# ip ips signature-definition
R1(config-sigdef)# signature 2004 0
R1(config-sigdef-sig)# status
R1(config-sigdef-sig-status)# retired false
R1(config-sigdef-sig-status)# enabled true
R1(config-sigdef-sig-status)# exit
R1(config-sigdef-sig)# engine
STUD--Talks: Follow us on for more videos and updates
Security In Computing Practical’s
R1(config-sigdef-sig-engine)# event-action produce-alert
R1(config-sigdef-sig-engine)# event-action deny-packet-inline
R1(config-sigdef-sig-engine)# exit
R1(config-sigdef-sig)# exit
R1(config-sigdef)# exit
Do you want to accept these changes? [confirm] <Enter>
Step 2: Use show commands to verify IPS.
R1# show ip ips all
(Output)
Step 3: Verify that IPS is working properly.
PCC> ping 192.168.1.2(Unsuccessful – Request timed out)
PCA> ping 192.168.3.2(Successful)
Step 4: View the syslog messages.
Click the Syslog server->Services tab-> SYSLOG
STUD--Talks: Follow us on for more videos and updates
You might also like
- Using NetsimDocument6 pagesUsing Netsimyudya sukmaNo ratings yet
- Configuring A Cisco Router As A PPPoE Client For DSL ConnectivityDocument6 pagesConfiguring A Cisco Router As A PPPoE Client For DSL ConnectivityCassandra ShafferNo ratings yet
- Pipe Network Analysis Using Hardy Cross MethodDocument19 pagesPipe Network Analysis Using Hardy Cross MethodAzaz Ahmed76% (21)
- 8.4.1.2 Packet Tracer - Configure and Verify A Site-To-Site IPsec VPN Using CLIDocument5 pages8.4.1.2 Packet Tracer - Configure and Verify A Site-To-Site IPsec VPN Using CLITalha Ur RehmanNo ratings yet
- How To - Establish VPN Tunnel Between Cyberoam and Cisco Router PIXDocument15 pagesHow To - Establish VPN Tunnel Between Cyberoam and Cisco Router PIXNurain AkramNo ratings yet
- Ig 4 Command Line Interface Reference: Document Release 1.01Document25 pagesIg 4 Command Line Interface Reference: Document Release 1.01aBui KANo ratings yet
- Snort3 Configuration Guide v70Document90 pagesSnort3 Configuration Guide v70ffgghh11No ratings yet
- RONA OverviewDocument7 pagesRONA OverviewHardik JadavNo ratings yet
- 5.4.1.2 Packet Tracer - Skills Integration Challenge Instructions-OkDocument9 pages5.4.1.2 Packet Tracer - Skills Integration Challenge Instructions-OkSergio Castañeda50% (2)
- 2.5.5 Packet Tracer - Configure Initial Switch SettingsDocument5 pages2.5.5 Packet Tracer - Configure Initial Switch SettingsHeriyanto TanNo ratings yet
- Python Programming Guide BookDocument323 pagesPython Programming Guide Bookhashmisahib48100% (14)
- SIC Practical3 by STUD - TalksDocument10 pagesSIC Practical3 by STUD - TalksPradeep PrajapatiNo ratings yet
- ASA 5506 10-3-1-2 Lab D - Configure AnyConnect Remote Access SSL VPN Using ASDMDocument31 pagesASA 5506 10-3-1-2 Lab D - Configure AnyConnect Remote Access SSL VPN Using ASDMjamal abki100% (1)
- Kiwi Syslog Server: Installation GuideDocument9 pagesKiwi Syslog Server: Installation GuideChuan Yau TanNo ratings yet
- Juniper RPM and Event PolicyDocument7 pagesJuniper RPM and Event PolicyAlex MachadoNo ratings yet
- 3.6.1.2 Packet Tracer - Configure AAA Authentication On Cisco Routers AnswersDocument11 pages3.6.1.2 Packet Tracer - Configure AAA Authentication On Cisco Routers AnswersSultan100% (3)
- Cisco Ipsec Static DynamicDocument9 pagesCisco Ipsec Static DynamichsitadmNo ratings yet
- 6.4.1.5 Packet Tracer - Configuring IPv4 Route Summarization - Scenario 1 Instructions - IG PDFDocument2 pages6.4.1.5 Packet Tracer - Configuring IPv4 Route Summarization - Scenario 1 Instructions - IG PDFReveng EngNo ratings yet
- CCNA VOICE DB ReplicationDocument29 pagesCCNA VOICE DB ReplicationshaikNo ratings yet
- Cisco Operazioni Di BaseDocument2 pagesCisco Operazioni Di BaseMonica CunninghamNo ratings yet
- CCNA Sample QuestionsDocument25 pagesCCNA Sample QuestionsAditya SahooNo ratings yet
- Linux WorkbookDocument171 pagesLinux WorkbooksrikanthmatheeshNo ratings yet
- IoT Advanced Program & Automation PDFDocument7 pagesIoT Advanced Program & Automation PDFRokaia M KobishNo ratings yet
- Configuration Notes 1204 FXO With AsteriskDocument12 pagesConfiguration Notes 1204 FXO With Asteriskgerma01gNo ratings yet
- 5.2.2.6 Lab - Configuring SNMPDocument12 pages5.2.2.6 Lab - Configuring SNMPHenri KelderNo ratings yet
- Chapter 11 - Comprehensive Lab - txt-1Document7 pagesChapter 11 - Comprehensive Lab - txt-1Arwin Ilagan33% (3)
- CISCO IOU InstallationDocument3 pagesCISCO IOU InstallationtanzimshamsuddinNo ratings yet
- IT Essentials (ITE v6.0) A+ Cert Practice Exam 2 Answers 2016Document11 pagesIT Essentials (ITE v6.0) A+ Cert Practice Exam 2 Answers 2016Godofredo Poccori Umeres0% (1)
- 3.6.1.2 Packet Tracer - Configure AAA Authentication On Cisco RoutersDocument4 pages3.6.1.2 Packet Tracer - Configure AAA Authentication On Cisco RoutersSandoval El MonoNo ratings yet
- SNMPV 3 and NNMiDocument30 pagesSNMPV 3 and NNMiroshan NaikNo ratings yet
- Cisco Nexus 5548UP Switch Configuration Guide PDFDocument14 pagesCisco Nexus 5548UP Switch Configuration Guide PDFsaf777No ratings yet
- Lab 9 - Trunk GroupsDocument6 pagesLab 9 - Trunk GroupsFurqan Ali KhanNo ratings yet
- Assignment: Submitted By: Pankaj YadavDocument128 pagesAssignment: Submitted By: Pankaj YadavRandy DookheranNo ratings yet
- Cisco4500 LicensingDocument27 pagesCisco4500 LicensingPatrickFay0% (1)
- CCNA Discovery Working at A Small-To-Medium Business or ISP (Version 4.1) Final ExamDocument17 pagesCCNA Discovery Working at A Small-To-Medium Business or ISP (Version 4.1) Final ExamJesusforgivemeNo ratings yet
- VVB 11.6 Messge Flow With Comprehensive Call Flow PDFDocument22 pagesVVB 11.6 Messge Flow With Comprehensive Call Flow PDFsumit rustagiNo ratings yet
- Upgrade Cisco IosDocument3 pagesUpgrade Cisco IosbrachotechNo ratings yet
- 5.2.2.5 Packet Tracer - Configuring Dynamic NAT Instructions IG PDFDocument2 pages5.2.2.5 Packet Tracer - Configuring Dynamic NAT Instructions IG PDFblado1No ratings yet
- Chapter 4. Using The Command-Line InterfaceDocument22 pagesChapter 4. Using The Command-Line InterfacePoojitha NagarajaNo ratings yet
- Configurar o Gns3Document12 pagesConfigurar o Gns3adilsoncrenteNo ratings yet
- Dynamips Tutorial 11032010Document23 pagesDynamips Tutorial 11032010HUT_8X_PROONo ratings yet
- List of TCP and UDP Port Numbers PDFDocument42 pagesList of TCP and UDP Port Numbers PDFAbhjijit ChandraNo ratings yet
- IPCop With DansGuardian Installation and ConfigurationDocument6 pagesIPCop With DansGuardian Installation and ConfigurationnopeiccoNo ratings yet
- Openfiler Disk Add in Solaris Using IscsiadmDocument3 pagesOpenfiler Disk Add in Solaris Using Iscsiadmgyan1No ratings yet
- Creating Axi-Lite Custom IP' in Vivado: Lab For COMP4601Document33 pagesCreating Axi-Lite Custom IP' in Vivado: Lab For COMP4601wwahib2100% (1)
- Configuring ISA Server For Incoming Ping ResponsesDocument227 pagesConfiguring ISA Server For Incoming Ping ResponsesDanudear DanielNo ratings yet
- Subnetting Examples1Document3 pagesSubnetting Examples1hammad choudharyNo ratings yet
- GView UNMS Quick Start Guide-Guangda EPON NMSDocument110 pagesGView UNMS Quick Start Guide-Guangda EPON NMSSPC INTERNETNo ratings yet
- 1en DHomesb ILM v4030Document148 pages1en DHomesb ILM v4030Murash javaidNo ratings yet
- Cisco 830 Series Secure Broadband Routers (Cisco 800 Series Routers) - Cisco SystemsDocument11 pagesCisco 830 Series Secure Broadband Routers (Cisco 800 Series Routers) - Cisco SystemsManish TankariaNo ratings yet
- Cisco Jabber Auto Discovery Service - SRV RecordsDocument10 pagesCisco Jabber Auto Discovery Service - SRV RecordsRitesh DesaiNo ratings yet
- Activity-6 Routing Informatio Protocol (RIP)Document6 pagesActivity-6 Routing Informatio Protocol (RIP)raffy arranguezNo ratings yet
- New ENARSI Questions 4: First 20 Questions Question 21 To 49Document42 pagesNew ENARSI Questions 4: First 20 Questions Question 21 To 49sad boy zNo ratings yet
- CA Module 1Document23 pagesCA Module 1Zahir MuhammedNo ratings yet
- Project Report 2Document57 pagesProject Report 2brijpatel909No ratings yet
- Lab 13.8.1 Configuring A Site-To-Site Ipsec VPN Using Pre-Shared KeysDocument6 pagesLab 13.8.1 Configuring A Site-To-Site Ipsec VPN Using Pre-Shared KeysKishore Reddy KandiNo ratings yet
- MSInfoDocument145 pagesMSInfoJohn DulayNo ratings yet
- PradeepDocument41 pagesPradeepPradeep PrajapatiNo ratings yet
- 35 Awp PraDocument64 pages35 Awp PraPradeep PrajapatiNo ratings yet
- SIC Practical5 by STUD - TalksDocument7 pagesSIC Practical5 by STUD - TalksPradeep PrajapatiNo ratings yet
- SIC Practical7 by STUD - TalksDocument4 pagesSIC Practical7 by STUD - TalksPradeep PrajapatiNo ratings yet
- SIC Practical4 by STUD - TalksDocument13 pagesSIC Practical4 by STUD - TalksPradeep PrajapatiNo ratings yet
- SIC Practical1 by STUD - TalksDocument9 pagesSIC Practical1 by STUD - TalksPradeep PrajapatiNo ratings yet
- PT Specialist Training Elongation CalculationDocument28 pagesPT Specialist Training Elongation CalculationVladimir SimeunovicNo ratings yet
- TPS54531 5-A, 28-V Input, Step-Down SWIFT™ DC-DC Converter With Eco-Mode™Document33 pagesTPS54531 5-A, 28-V Input, Step-Down SWIFT™ DC-DC Converter With Eco-Mode™hajaNo ratings yet
- VMS PaliDocument61 pagesVMS Palichintan100% (2)
- BP344ACCESSIBILITYLAWDocument92 pagesBP344ACCESSIBILITYLAWMarsha Amparo PresasNo ratings yet
- Operation Instructions DHA-80 DMCU Hxx.38Document65 pagesOperation Instructions DHA-80 DMCU Hxx.38tpiscribdNo ratings yet
- Biometric Terminals - Set 2018 - EN - RMDocument94 pagesBiometric Terminals - Set 2018 - EN - RMDAVINo ratings yet
- MS-Excel Question Bank With AnswerDocument72 pagesMS-Excel Question Bank With AnswerShubham KackerNo ratings yet
- Florens Reefer ContDocument24 pagesFlorens Reefer ContDražen ĐukićNo ratings yet
- Datasheet GP4601TAD ENDocument2 pagesDatasheet GP4601TAD ENHossam A.MoneimNo ratings yet
- Earth Science AHA Moment #6Document3 pagesEarth Science AHA Moment #6Rex Alphonse ReventarNo ratings yet
- 2G TRIAL-Enhanced BCCH Power Optimization - All EJ BSC - 20160729Document13 pages2G TRIAL-Enhanced BCCH Power Optimization - All EJ BSC - 20160729night_shakker100% (1)
- 80G Communication ProtocolDocument22 pages80G Communication Protocolsoporte factoryNo ratings yet
- Free and Force Vortex ExperimentDocument9 pagesFree and Force Vortex Experiment邱俊佑No ratings yet
- 5.2 Steady-State Mixed Flow Reactor: Ideal Reactors For A Single ReactionDocument40 pages5.2 Steady-State Mixed Flow Reactor: Ideal Reactors For A Single ReactionGUNJANS93100% (2)
- SCREW PUMP Vs GEAR PUMP PDFDocument1 pageSCREW PUMP Vs GEAR PUMP PDFgauravgangwar100% (2)
- Early Gas WP Area MC Requirements PDFDocument134 pagesEarly Gas WP Area MC Requirements PDFYousuf Nasser ALAbriNo ratings yet
- Diagramas de Radios - Beitman-1949Document162 pagesDiagramas de Radios - Beitman-1949rene DavidNo ratings yet
- Handout 41100 PolynomialRegressionDocument6 pagesHandout 41100 PolynomialRegressionPrajol JoshiNo ratings yet
- Errata - First Edition of A Mathematical Introduction To Logic - Herbert B. EndertonDocument3 pagesErrata - First Edition of A Mathematical Introduction To Logic - Herbert B. EndertonKelvinNo ratings yet
- GWT Programming CookbookDocument109 pagesGWT Programming CookbookAwAkEdNo ratings yet
- +-45 Equation Rotation Strain RateDocument10 pages+-45 Equation Rotation Strain Ratefitoussi JosephNo ratings yet
- Trick HybridisationDocument26 pagesTrick HybridisationQaisar RiazNo ratings yet
- Milk Cooling CalculationsDocument10 pagesMilk Cooling CalculationsAshraf N HaniaNo ratings yet
- Common-Emitter Circuit With Emitter Resistor: Without RDocument16 pagesCommon-Emitter Circuit With Emitter Resistor: Without RMuthukrishnan Vijayan VijayanNo ratings yet
- Pump, Motors Summary 030406Document8 pagesPump, Motors Summary 030406Luigi Di RadoNo ratings yet
- MT DLP Y3 TS25 (Topic 1)Document13 pagesMT DLP Y3 TS25 (Topic 1)MOHAMAD BIN SHAHAK MoeNo ratings yet
- Cryogenic Separation Plants PDFDocument20 pagesCryogenic Separation Plants PDFHemanth Kumar Sarosh KiranNo ratings yet
