E-40
Cisco Intrusion Prevention System Appliance Hardware Installation Guide for IPS 7.1
OL-24002-01
Appendix E Troubleshooting
Troubleshooting the Appliance
For More Information
• For the procedure for obtaining the latest Cisco IPS software, see Obtaining Cisco IPS Software,
page C-1.
• For more information about configuring devices, see Device Access Issues, page E-40.
• For the procedure for verifying the interfaces and directions for each network device, see Verifying
the Interfaces and Directions on the Network Device, page E-41.
• For the procedure for enabling SSH, see Enabling SSH Connections to the Network Device,
page E-42.
Device Access Issues
The ARC may not be able to access the devices it is managing. Make sure the you have the correct IP
address and username and password for the managed devices and the correct interface and direction
configured.
Note SSH devices must support SSH 1.5. The sensor does not support SSH 2.0.
To troubleshoot device access issues, follow these steps:
Step 1 Log in to the CLI.
Step 2 Verify the IP address for the managed devices.
sensor# configure terminal
sensor (config)# service network-access
sensor(config-net)# show settings
general
-----------------------------------------------
log-all-block-events-and-errors: true <defaulted>
enable-nvram-write: false <defaulted>
enable-acl-logging: false <defaulted>
allow-sensor-block: false <defaulted>
block-enable: true <defaulted>
block-max-entries: 250 <defaulted>
max-interfaces: 250 <defaulted>
master-blocking-sensors (min: 0, max: 100, current: 0)
-----------------------------------------------
-----------------------------------------------
never-block-hosts (min: 0, max: 250, current: 0)
-----------------------------------------------
-----------------------------------------------
never-block-networks (min: 0, max: 250, current: 0)
-----------------------------------------------
-----------------------------------------------
block-hosts (min: 0, max: 250, current: 0)
-----------------------------------------------
-----------------------------------------------
block-networks (min: 0, max: 250, current: 0)
-----------------------------------------------
-----------------------------------------------
-----------------------------------------------
user-profiles (min: 0, max: 250, current: 1)
-----------------------------------------------
profile-name: r7200
-----------------------------------------------
enable-password: <hidden>
Comments to this Manuals