I have 2 Cisco PIX ver 6.3 (one with UR and another with FO). I have also a Tippingpoint IPS (Unity 400) which is behind the PIX. The three segments of the IPS are physically connected to PIX1 (UR), one of which is to an inside network. One segment of the IPS is connected to PIX2 (FO) which is another connection to the inside network.
1. is physical connection from all segments of the IPS to PIX1 enough for any traffic to pass through the IPS whether PIX1 or PIX2 is active?
2. when PIX1 is active, traffic is too slow to the inside network, why?