HQ IPS Cluster
In this example, the HQ IPS Cluster is an inline serial cluster located in the Headquarters network.
The cluster consists of two IPS engine nodes: Node 1 and Node 2.
| Network interface | Description |
|---|---|
| Capture Interfaces | The HQ IPS Cluster’s capture interface on each node is connected to a SPAN port in the headquarters intranet switch. All traffic in this network segment is forwarded to the SPAN ports for inspection. |
| Inline Interfaces | The cluster is deployed in the path of traffic between the firewall and the headquarters intranet switch. All traffic flows through each node’s Inline Interface pair. |
| Normal Interfaces | The normal interface on each node is connected to the headquarters intranet switch. Node 1’s IP address is 172.16.1.41 and Node 2’s address is 172.16.1.42. This normal interface is used for control connections from the Management Server, sending events to the HQ Log Server, and for sending TCP resets |
| Heartbeat Interfaces |
The nodes have dedicated Heartbeat Interfaces. Node 1 uses the IP address 10.42.1.41 and Node 2 uses the IP address 10.42.1.42. |