Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

Security Network Design with IPS Question

Hello,

on a point to point connection with a 5510 Firewall edition on each end does it make sense to add an IPS module on both 5510s or just one side? Perhaps there is a way for the one IPS module to monitor both sides and automatically terminate traffic on the other ASA as well?

Thanks in advance. All replies rated

2 REPLIES
New Member

Re: Security Network Design with IPS Question

Will these firewalls be communicating with any other devices outside of each other? If so you might want an IPS on both sides. If they are just communicating with each other then I would think having an IPS on both sides would be redundant.

New Member

Re: Security Network Design with IPS Question

Hello Larry,

thanks for the reply. These devices will be behind a 2800 series router on each end doing a VPN.

We will also have VPN access to our NOC for monitoring. Thoughts?

149
Views
0
Helpful
2
Replies
CreatePlease to create content