PART 1 IPS MODULE CONFIGURATION GUIDE FOR 7510E H3C SWITCH
Core switch configuration on 7510E switch
1, IPs module is inserted on module 8 on 7510 E chassis,
#
2, We should create dummy vlan for ips module,
#
Vlan 870 primary vlan for ips module
interface Vlan-interface870
Description IPS vlan
ip address 192.168.7.1 255.255.255.248
#
3, Second vlan for second ips module
#Vlan 871 secondary vlan for second module
Interface Vlan-interface871
Description secondary ips vlan
Ip address 192.168.8.1 255.255.255.252
#
Ips module configuration
interface Ten-GigabitEthernet1/8/0/1
port link-type trunk
port trunk permit vlan all
port trunk pvid vlan 870-----------------Dummy vlan
port connection-mode extend
mac-address mac-learning disable-------should disable the Mac learning on this interface
#
4, This command will help for communicating to ips module .Without this we cannot view the interface on IPS module
#
acfp server enable :-------à Need to enable on core switch (7510e)
#
acsei server enable:------à Need to enable on core switch (7510e)
#
Snmp strings for IPS module
Snmp-agent sys-info version all
Snmp-agent group v3 ips read-view iso write-view iso
Snmp-agent group v3 ips1 read-view iso write-view iso
snmp-agent usm-user v3 ips ips
Snmp-agent usm-user v3 ips1 ips
It will provide you up/down log for ips module in 7510e
