18-10
Cisco ASA Series Firewall CLI Configuration Guide
Chapter 18 ASA IPS Module
Configuring the ASA IPS module
Sessioning to the Module from the ASA
To access the IPS module CLI from the ASA, you can session from the ASA. For software modules, you
can either session to the module (using Telnet) or create a virtual console session. A console session
might be useful if the control plane is down and you cannot establish a Telnet session.
Detailed Steps
(ASA 5512-X through ASA 5555-X) Booting the Software Module
Your ASA typically ships with IPS module software present on Disk0. If the module is not running, or
if you are adding the IPS module to an existing ASA, you must boot the module software. If you are
unsure if the module is running, you will not be able to session it.
Command
Purpose
Telnet session.
For a hardware module (for example, the
ASA 5585-X):
session 1
For a software module (for example, the
ASA 5545-X):
session ips
Example:
hostname# session 1
Opening command session with slot 1.
Connected to slot 1. Escape character
sequence is 'CTRL-^X'.
sensor login: cisco
Password: cisco
Accesses the module using Telnet. You are prompted for the username and
password. The default username is
cisco
, and the default password is
cisco
.
Note
The first time you log in to the module, you are prompted to change
the default password. Passwords must be at least eight characters
long and cannot be a word in the dictionary.
Console session (software module only).
session ips console
Example:
hostname# session ips console
Establishing console session with slot 1
Opening console session with module ips.
Connected to module ips. Escape character
sequence is 'CTRL-SHIFT-6 then x'.
sensor login: cisco
Password: cisco
Accesses the module console. You are prompted for the username and
password. The default username is
cisco
, and the default password is
cisco
.
Note
Do not use this command in conjunction with a terminal server
where
Ctrl-Shift-6, x
is the escape sequence to return to the
terminal server prompt.
Ctrl-Shift-6, x
is also the sequence to
escape the IPS console and return to the ASA prompt. Therefore, if
you try to exit the IPS console in this situation, you instead exit all
the way to the terminal server prompt. If you reconnect the terminal
server to the ASA, the IPS console session is still active; you can
never exit to the ASA prompt. You must use a direct serial
connection to return the console to the ASA prompt.
Use the
session ips
command instead.
Содержание ASA 5512-X
Страница 5: ...P A R T 1 Service Policies and Access Control ...
Страница 6: ......
Страница 50: ...3 14 Cisco ASA Series Firewall CLI Configuration Guide Chapter 3 Access Rules History for Access Rules ...
Страница 51: ...P A R T 2 Network Address Translation ...
Страница 52: ......
Страница 126: ...5 28 Cisco ASA Series Firewall CLI Configuration Guide Chapter 5 NAT Examples and Reference DNS and NAT ...
Страница 127: ...P A R T 3 Application Inspection ...
Страница 128: ......
Страница 255: ...P A R T 4 Connection Settings and Quality of Service ...
Страница 256: ......
Страница 288: ...12 14 Cisco ASA Series Firewall CLI Configuration Guide Chapter 12 Quality of Service History for QoS ...
Страница 303: ...P A R T 5 Advanced Network Protection ...
Страница 304: ......
Страница 339: ...P A R T 6 ASA Modules ...
Страница 340: ......
Страница 398: ...17 28 Cisco ASA Series Firewall CLI Configuration Guide Chapter 17 ASA CX Module History for the ASA CX Module ...