Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
329
Views
0
Helpful
1
Replies

where is it best to apply IPS

carl_townshend
Spotlight
Spotlight

‎03-25-2015 02:08 AM - edited ‎03-10-2019 06:21 AM

Hi All

Can anyone tell me where it is most critical to apply IPS inspection

inside to internet?

internet to inside?

inside to WAN ?

We have a firewall that has lots of connections and we may have to switch IPS off on certain traffic due to the load, so I would like to know what part is most critical to run IPS and why?

 

cheers

 

 

Labels:
0 Helpful
1 Reply 1

chenbs
Level 1
Level 1

‎03-25-2015 05:06 AM

Hi,

It would be good to apply internet to inside as the connections from inside to outside & inside

to WAN are classified from source addresses. From the internet, the threats are generally higher

as vulnerabilities in your internal network is unknown, it could be subject to reconissance attacks etc..

Running a firewall as well as IPS cuts down throughput as most firewalls check the packet for source/destination/port against an ACL and then forwards it to the IPS inspection engine. You might want to consider a dedicated IPS appliance.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card