Filter
Top Products
9-2
Cisco Intrusion Prevention System Appliance and Module Installation Guide for IPS 7.1
OL-24002-01
Chapter 9 Installing and Removing the ASA 5585-X IPS SSP
Introducing the ASA 5585-X IPS SSP
Introducing the ASA 5585-X IPS SSP
You can install the Cisco Intrusion Prevention System Security Services Processor
(ASA 5585-X IPS SSP) in the ASA-5585-X adaptive security appliance. The ASA 5585-X is a 2RU,
two-slot chassis. The Security Services Processor (ASA 5585-X SSP) resides in slot 0 (the bottom slot)
and the ASA 5585-X IPS SSP resides in slot 1 (the top slot). All port numbers are numbered from right
to left beginning with 0.
The ASA 5585-X series with the IPS SSP comes in four models:
•
ASA 5585-X IPS-10 with IPS SSP-10
•
ASA 5585-X IPS-20 with IPS SSP-20
•
ASA 5585-X IPS-40 with IPS SSP-40
•
ASA 5585-X IPS-60 with IPS SSP-60
In addition to world-class performance, the ASA 5585-X deploys encrypted traffic inspection, port
density (up to 20 interfaces depending on the model), and feature performance matching, that is,
performance parity between firewall and IPS functions. All ASA 5585-X series adaptive security
appliances ship with a core SSP (ASA 5585-X SSP); the ASA 5585-X IPS SSP is optional. You must
have the core SSP to run the ASA 5585-X IPS SSP.
Note
Online insertion and removal (OIR) of the security services processors is not supported at this time.
SFP/SFP+, power supply module, and fan module OIR is supported.
IDM
The ASA 5585-X IPS SSP supports the Intrusion Prevention System Device Manager (IDM) 7.1. The
IDM delivers security management and monitoring through an intuitive, easy-to-use web-based
management interface. The IDM is a Java Web Start application that enables you to configure and
manage your ASA 5585-X IPS SSP. The IDM is bundled with IPS 7.1. You can access it through
Internet Explorer or Firefox web browsers.
IME
The Intrusion Prevention System Manager Express (IME) 7.1 also supports the ASA 5585-X IPS SSP.
The IME is a network management application that provides system health, events, and collaboration
monitoring in addition to reporting and configuration for up to ten sensors. The IME monitors sensor
health using customizable dashboards and provides security alerts through RSS feed integration from the
Cisco Security Intelligence Operations site. It monitors global correlation data, which you can view in
events and reports. It monitors events and lets you sort views by filtering, grouping, and colorization.
The IME also supports tools such as ping, trace route, DNS lookup, and whois lookup for selected
events. It contains a flexible reporting network. It embeds the IDM configuration component to allow
for a seamless integration between the monitoring and configuration of IPS devices. Within the IME you
can set up your sensors, configure policies, monitor IPS events, and generate reports. The IME works in
single application mode—the entire application is installed on one system and you manage everything
from that system.
ASA 5585-X SSP-10 With IPS SSP-10
The ASA 5585-X SSP-10 with IPS SSP-10 provides firewall, VPN support, intrusion prevention system
protection, and 20 interfaces (2 SFP/SFP+ and 18 copper Gigabit Ethernet). The SSP-10 with
IPS SSP-10 has one power supply module and one fan module. You can replace the fan module with