Add traffic inspection interfaces to IPS engines
IPS engines pick up passing network traffic for inspection in real time.
You can define both capture interfaces and inline interfaces for the same IPS engine.
When traffic is inspected, it might be important to know the interface through which it arrives to the IPS engine. It is also important to be able to distinguish an IPS engine’s capture interfaces from its inline interfaces. Logical interface elements are used for both these purposes. They allow you to group interfaces that belong to the same network segment and to identify the type of the traffic inspection interface.
Define a logical interface in the following cases:
- You want to create both capture interfaces and inline interfaces on the same IPS engine.
- You want to distinguish interfaces from each other.
Next steps
- If you want to use reset interfaces with capture interfaces, add reset interfaces.
- Add capture interfaces or inline interfaces.