NGFW Engines
You can use NGFW Engines in the Firewall/VPN, IPS, and Layer 2 Firewall roles. You can also use NGFW Engines as Master NGFW Engines to host Virtual NGFW Engines in these roles.
| Engine Role | Elements |
|---|---|
| Firewall/VPN |
Single Firewall elements represent firewalls that consist of one physical device. Firewall Cluster elements consist of 2–16 physical firewall devices that work together as a single entity. Virtual Firewall elements are Virtual NGFW Engines in the Firewall/VPN role. |
| IPS |
Single IPS elements represent IPS engines that consist of one physical IPS device. IPS Cluster elements combine 2–16 physical IPS devices into a single entity. Virtual IPS elements are Virtual NGFW Engines in the IPS role. |
| Layer 2 Firewall |
Single Layer 2 Firewall elements represent Layer 2 Firewalls that consist of one physical device. Layer 2 Firewall Cluster elements combine 2–16 physical Layer 2 Firewall devices into a single entity. Virtual Layer 2 Firewall elements are Virtual NGFW Engines in the Layer 2 Firewall role. |
| Master NGFW Engine | Master NGFW Engine elements represent physical devices that host Virtual NGFW Engines. |
These elements are containers for the main configuration information directly related to the NGFW Engines.