Showing posts with label SDM. Show all posts
Showing posts with label SDM. Show all posts

Monday, January 10, 2011

Low Heap Memory Size Configuring IPS using SDM

To have a secure network we must be aware of the technologies which can really help us in securing our network, I was studying CCNA-Security last day and a task was about to perform on Cisco router, “Implementing Router Based IPS”. In my case I took 1841 series router and access through SDM. when I select IPS from the left panel I got the following message……….! Banggggg :(

“Your current Java memory heap size is less than 256MB, the amount required for IOS to run. To change the Java memory heap size, open the java control panel and enter -Xmx256m in the Java Applet Runtime Settings dialog. This dialog is in the Java tab, or in the Advance tab of the Java control panel. After you have changed the Java heap size, restart Cisco SDM”.

I consult Google and SDM help so got the solution, Its very simple just follow the following steps:

1. Select START, click on Control Panel

2. Double Click on JAVA

3. Click on ADVANCE tab, and Click on “Java Runtime” if you not able to see this then follow Step-4

4. Click on JAVA tab and click on “View” under “Java Applet Runtime Settings”

5. In the window under “Java Runtime Parameters” write down “-Xmx256m”.

6. Click OK

7. Click Apply and OK

8. Restart your SDM

9. Enjoy IPS Configuration :)

I hope this will be informative for you :)
Posted by at 3 comments:
Labels: , ,

Sunday, March 1, 2009

Configuring Router to run SDM

Cisco Router and Security Device Manager (SDM) is an graphical, Web-based device management tool supported on Cisco 830 series through Cisco 7301 routers. SDM provides smart wizards and advanced configuration support for LAN and WAN configurations, NAT, Firewall Policy, Intrusion Prevention (IPS), IPSec virtual private network (VPN), Easy VPN Client and Server configurations, Digital Certificates, and Quality of Service (QoS) Policy features.

You can download SDM free of cost from Cisco site.
www.cisco.com/go/sdm

Follow the steps below to configure a router to run SDM.

Step 1:
Connect to your router using Telnet, SSH or via console.
Enter the global configuration mode using the command:

Router>enable

Router#conf terminal

Router(config)#

Step 2 :
Enable the router's HTTP/HTTPS server, using the following Cisco IOS commands:

Router(config)# ip http server

Router(config)# ip http secure-server

Router(config)# ip http authentication local

Note:- HTTPS is enabled only for crypto enabled IOS images.

Step 3:
Create a user with privilege level 15.

Router(config)# username cisco privilege 15 password 0 cisco

Note:- Replace cisco and cisco with the username and password that you want to configure.

Step 4:
Configure SSH and Telnet for local login and privilege level 15:

Router(config)# line vty 0 4

Router(config-line)# privilege level 15

Router(config-line)# login local

Router(config-line)# transport input telnet

Router(config-line)# transport input telnet ssh

Router(config-line)# exit

Step 5: (Optional) Enable local logging to support the log monitoring function:

Router(config)# logging buffered 51200 warning
Posted by at 6 comments:
Labels: ,
Subscribe to: Posts (Atom)