Add inline IPS interfaces to Engine Clusters
There are two physical interfaces in an inline IPS interface. The traffic is forwarded from one interface to the other.
The traffic that the Engine Cluster allows goes through the inline IPS interface as if it was going through a network cable. The Engine Cluster drops the traffic you want to stop.
Inline interfaces are associated with a Logical interface element. The Logical interface is used in the Layer 2 Interface Engine Policies and the traffic inspection process to represent one or more inline IPS interfaces.
Fail-open network cards have fixed pairs of ports. Make sure to map these ports correctly during the initial configuration of the engine. If you use the automatic USB memory stick configuration method for the engine’s initial configuration, the ports are configured automatically.
For more details about the product and how to configure features, click Help or press F1.
Steps
Next steps
- Define how the Engine Cluster handles traffic when the traffic load is too high using the Bypass Traffic on Overload setting.
- Add VLAN interfaces to the inline IPS interface.
- Add other types of layer 2 interfaces.
- Select system communication roles for interfaces.
- Bind engine licenses to the Engine Cluster elements.