Turning on IDS affects a routers performance greatly. I would NOT do this on a busy router, use an IDS sensor for that purpose if you're really serious about IDS. Since the router has to look at all parts of the packet, not just the header, a lot of the traffic is then process switched. Plus the router only looks for a small subset of all the signatures that a sensor will capture.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...