Nt1310 Unit 3 Assignment 1

Words: 1058
Pages: 5

Methodology
With the time being different security devices and system took place but those are not strong enough against all types of cyber-attack. Previously firewall was only able to detect malicious traffic from outside. But it was not able to detect attack within the network. Cisco IPS is capable of monitor thousands of traffic at a time without error. Many networks devices are restricted to lower layers of the OSI model and if those have each packet inspection features may only be able to handle attacks that misuse certain protocols. Here the necessity of IPS comes in. this device is purposely built to inspect traffic through a network, raise alarms and attempt to stop the attack. Cisco IPS 4260 sensor deliver very high performance with precision response, extending the diverse cisco IPS solution from the network edge to the data center.
…show more content…
A medium size industrial used network is developed where few routers, switches, servers, wireless access point, security appliance. In this network, routers are located in different branch of the company at different location. Set up and configuring the IPS is the challenging part of this implementation.
Cisco 4260 IPS can be deployed an inline IPS configuration, a promiscuous configuration or both inline and promiscuous simultaneously. In the configuration mode we use two monitoring port out of four for only a single subnet. In this configuration mode IPS will inspect each original traffic of the network and can react according to the types of traffic. In the inline configuration mode if we need to configure this IPS for another subnet then it will be out of interface. Depending on the scenario of the network, the IPS is configured for inline or promiscuous