Week 4-2 Configure an Intrusion Prevention System (IPS) -...

This preview shows page 1 - 3 out of 22 pages.

CCNA Security Lab - Configure an Intrusion Prevention System (IPS) Topology IP Addressing Table Device Interface IP Address Subnet Mask Default Gateway Switch Port R1 G0/1 192.168.1.1 255.255.255.0 N/A S1 F0/5 S0/0/0 (DCE) 10.1.1.1 255.255.255.252 N/A N/A R2 S0/0/0 10.1.1.2 255.255.255.252 N/A N/A S0/0/1 (DCE) 10.2.2.2 255.255.255.252 N/A N/A R3 G0/1 192.168.3.1 255.255.255.0 N/A S3 F0/5 S0/0/1 10.2.2.1 255.255.255.252 N/A N/A PC-A NIC 192.168.1.3 255.255.255.0 192.168.1.1 S1 F0/6 PC-C NIC 192.168.3.3 255.255.255.0 192.168.3.1 S3 F0/18 © 2016 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 1 of 22
Lab – Configure an Intrusion Prevention System (IPS) Objectives Part 1: Configure Basic Router Settings Configure hostname, interface IP addresses, and access passwords. Configure the static routing. Part 2: Use CLI to Configure an IOS IPS Configure IOS IPS using CLI. Modify IPS signatures. Examine the resulting IPS configuration. Verify IPS functionality. Log IPS messages to a syslog server. Part 3: Simulate an Attack Use a scanning tool to simulate an attack. Background/Scenario In this lab, you will configure the Cisco IOS IPS, which is part of the Cisco IOS Firewall feature set. IPS examines certain attack patterns and alerts or mitigates when those patterns occur. IPS alone is not enough to make a router into a secure Internet firewall, but when added to other security features, it can be a powerful defense. You will configure IPS using the Cisco IOS CLI and then test IPS functionality. You will load the IPS Signature package from a TFTP server and configure the public crypto key using the Cisco IOS. Note : The router commands and output in this lab are from a Cisco 1941 router with Cisco IOS Release 15.4(3)M2. Other routers and Cisco IOS versions can be used. See the Router Interface Summary Table at the end of the lab to determine which interface identifiers to use based on the equipment in the lab. The commands available and output produced are determined by the router model and Cisco IOS version used. Therefore, they might vary from what is shown in this lab. Note : Ensure that the routers and switches have been erased and have no startup configurations. Required Resources 3 routers (Cisco 1941 with Cisco IOS Release 15.4(3)M2) 2 switches (Cisco 2960 or comparable) 2 PCs (Windows Vista or Windows 7, Tftpd32 server, Nmap/Zenmap, the latest version of Java, Internet Explorer, and Flash Player) Serial and Ethernet cables as shown in the topology Console cables to configure Cisco networking devices IPS Signature package and public crypto key files on PC-A and PC-C (provided by the instructor) Part 1: Configure Basic Router Settings In Part 1, you will set up the network topology and configure basic settings, such as hostnames, interface IP addresses, static routing, device access, and passwords. Note : Perform the steps listed in Part 1 on all three routers. Only R1 is shown below.

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture