1.拓撲圖:
<a href="http://blog.51cto.com/attachment/201205/120425998.jpg" target="_blank"></a>
2.接口配置:
R1(config)#int f0/0
R1(config-if)#ip add 10.1.1.1 255.255.255.0
R1(config-if)#no sh
R2(config)#int f0/0
R2(config-if)#ip add 10.1.1.2 255.255.255.0
R2(config-if)#no sh
R3(config)#monitor session 1 source interface f0/1 both
R3(config)#monitor session 1 destination interface f0/15
3.IPS配置:
A.确認g0/1接口已經enabled
<a href="http://blog.51cto.com/attachment/201205/120531726.jpg" target="_blank"></a>
B.将g0/1關聯到virtual sensor
<a href="http://blog.51cto.com/attachment/201205/120638378.jpg" target="_blank"></a>
4.測試:
A.在R2上連續ping R1
R2#ping 10.1.1.1 repeat 100
Type escape sequence to abort.
Sending 100, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds:
.!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
Success rate is 99 percent (99/100), round-trip min/avg/max = 8/25/84 ms
R2#
B.在IPS上能看到攻擊事件
<a href="http://blog.51cto.com/attachment/201205/120740409.jpg" target="_blank"></a>
本文轉自 碧雲天 51CTO部落格,原文連結:http://blog.51cto.com/333234/880625,如需轉載請自行聯系原作者
![1、Linux 指令行使用技巧[圖]](data:image/gif;base64,R0lGODlhAQABAIAAAP///wAAACwAAAAAAQABAAACAkQBADs=)