I'm new IDM
We have a ASA 5520 with IPS 10 module.
i wanted to know how the traffiic will flow in & out
My thoughts: from outside Internet>IPS>FW>LAn
is it right ?
well you can configure the IPS module from the asa cli only. it depends upon the mode you want. promiscous or inline.
if you configure in promiscous mode a copy of packet is sent to the AIP-SSM-10 module, in this case it will act as IDS.
if you configure in inline mode then the traffic comes to inside/outside interface of the ASA and then it will be sent to AIP-SSM-10 module but dont forget to configure "bypass mode on"
load will always be there on the firewall because the module is inbuilt.
and it has to transfer the traffic to the module.
hope your doubt is cleared.