IOS Based IPS

pitviper

Is it any good? I understand the configuration need @ the CCNA:S level, but I can’t seem to get it actually react to ANYTHING! I tried massive port scans, DOS tools, generating lots of traffic (opened up 1000 simultaneous streams w/iperf) and various other goodies = nothing. I have it setup on all interfaces, have attacked from the LAN, DMZ, and outside – Even opened everything up to one of the DMZ boxes (It’s in a lab, not connected to the internet), NOTHING! Signatures are active, nothing hits. I’m contemplating opening a VMWare image up to the outside world in the DMZ and letting everything in but I don’t have enough faith at this point that the IPS will actually show me anything!

mikej412

Are you sure the signatures compiled correctly?
show ip ips signature count

Did you configure from the command line or SDM?