Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Exclude network traffic from inspection

Hi,

May I configure my IPS (this is an appliance), not to monitor, analyse some network traffic? I know I can create filters for events, but I want to prevent my box from oversubscribtion, so I don't want to monitor some type of traffic with it.

Thx

1 REPLY

Re: Exclude network traffic from inspection

What kind if traffic you would like to exclude? By not using IPS filter (prevent oversubscribtion or cpu processing), you basically need filter it out at switch/router/firewall port level.

You can create ACL to filter the unwanted traffic from hitting your IPS interface. But the setback is, you might filter passing through traffic/protocol that is needed by clients/hosts on the other side of the network.

I guess this is where you really need the IPS filter. Basically, your IPS model selection should be suitable for the link & bandwidth that it need to monitor/filter to prevent oversubscription.

Rgds,

AK

244
Views
0
Helpful
1
Replies
CreatePlease to create content