From: Farrukh Haroon (farrukhharoon@gmail.com)
Date: Sun Mar 01 2009 - 04:27:29 ARST
You can do this using virtually any famous IPS vendor out there, as inline
support is pretty ubiquitous now.
With Cisco (since you have a 6500 series switch) you can also do
Etherchannel based load balancing to utilize multiple IPS hardware elements
(if present) like IDSM-2 and 4200 Series sensors. References:
Regards
Farrukh
On Sat, Feb 28, 2009 at 3:03 PM, Monica Belluci <mpls1979@gmail.com> wrote:
> Dear All,
>
> I have one small query .
> Our network has 11 Vlan(100 to 111) and in One VLAN all servers are located
> and remaining 10 VLAN we have Internal Users.
> We are using cisco Core switched 6513 with cisco IOS and intervlan routing
> is done by sup720 module.
> We have Extra Tipping point IPS and want to use it between Alluser VLANs
> and
> Servers VLAN .
> is there anyway I can Implement Tipping point IPS or Cisco IPS between
> Users
> and servers , means anyuser send any packets to servers it should go
> through
> First Tipping point or Cisco IPS then to servers.
>
> Int VLANx,IntVlany are directly connected VLAN on sup720 in cisco 6513 .
>
> Users -----Interfaces VLANx-----(Tipping Point IPS or Cisco IPS) -----Int
> VLANy------- Servers
>
> OR
>
>
> Users -----Interfaces VLANx-----CISCO ASA FIREWALL -----Int VLANy-------
> Servers
>
> Or is it possible to implement ASA Firewall for InterVLAN security .
>
>
>
> Thanks
> Monica
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Mon Apr 06 2009 - 06:44:03 ART