Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

fail-open on ips 4255

i have a query regardin bypass. Suppose i have a hardware failure or power supply down for IPS , do IPS 4255 bypass the traffic by default or we need to add some extra hardware .

thanks for your input

1 REPLY
Cisco Employee

Re: fail-open on ips 4255

For IPS 4255, you can enable bypass mode in the software where the appliance will allow traffic to continue flowing only on software failures where the Analysis Engine has stopped inspecting traffic.  For hardware bypass, you'll need to have a 4260 or 4270.  Please see more information here:

http://www.cisco.com/en/US/docs/security/ips/7.0/installation/guide/hw_installing_4260.html

385
Views
5
Helpful
1
Replies
CreatePlease to create content