Cisco IOS IPS

The Cisco IOS Intrusion Prevention System (IPS) feature set provides an integrated inline deep-packet inspection solution within the router software architecture.

IOS IPS enables the network to be able to defend itself with the intelligence to monitor, detect, identify, classify, and mitigate malicious traffic in real-time and stop malicious traffic close to its entry point.

Deploying Cisco IOS IPS in inline mode provides a unique offering that enables you to stop the attack at the point of origin. The IOS IPS solution can be deployed at various network points within the network and can be ideally situated at the network edge to protect the network from malicious and offending traffic entering into the network. Currently, Cisco is the only vendor to deliver this integrated functionality on a router.

The Cisco IOS IPS solution is available on all Cisco Integrated Services Routers (ISR) series and offers an integrated security and policy enforcement solution.

The IOS IPS feature set is a suite of intrusion prevention solutions provisioning a single point of protection at the network perimeter.

IOS IPS offers unparalleled intrusion security, reliability, scalability, and multilevel performance.

Some of the key features in IOS IPS are the following:

• Protects against network viruses, worms, and a large variety of network threats and exploits.

• Eliminates the need for a standalone IPS device.

• Provides integrated inline deep-packet inspection.

• Supports about 2,000 attack signatures similar to those available on a regular Cisco IPS sensor appliance.

• Uses Cisco IOS routing capabilities to deliver integrated functionality.

• Enables distributed networkwide threat mitigation.

• Sends a syslog message or an alarm in Secure Device Event Exchange (SDEE) format upon detecting an attack signature.

• Complements Cisco IOS Firewall and VPN solutions for superior threat protection at all entry points into the network.