https://community.cisco.com/t5/network-security/sourcefire-network-exclusion/m-p/2771393#M1038201 <P>Can you exclude network traffic from being processed by the sensor so that it doesn't impact the load on the appliance? For example, if you have an 5G appliance with 10G ports inline with a network and you want to only process certain traffic. Can you have10Gig of traffic with&nbsp;5Gigs of unmonitored traffic go through the box and not have it impact the performance?&nbsp;</P> Tue, 26 Mar 2019 01:15:54 GMT allensurface 2019-03-26T01:15:54Z https://community.cisco.com/t5/network-security/sourcefire-network-exclusion/m-p/2771393#M1038201 <P>Can you exclude network traffic from being processed by the sensor so that it doesn't impact the load on the appliance? For example, if you have an 5G appliance with 10G ports inline with a network and you want to only process certain traffic. Can you have10Gig of traffic with&nbsp;5Gigs of unmonitored traffic go through the box and not have it impact the performance?&nbsp;</P> Tue, 26 Mar 2019 01:15:54 GMT https://community.cisco.com/t5/network-security/sourcefire-network-exclusion/m-p/2771393#M1038201 allensurface 2019-03-26T01:15:54Z https://community.cisco.com/t5/network-security/sourcefire-network-exclusion/m-p/2771394#M1038208 <P>Put the networks you don't want to inspect into a "trusted" object and set your&nbsp;access control policy to trust traffic from it. That will keep the sensor from inspecting that traffic.</P><P>We do this, for instance, with high volume backup traffic that transits the IPS en route to an off-site backup or replication destination.</P> Wed, 21 Oct 2015 01:37:25 GMT https://community.cisco.com/t5/network-security/sourcefire-network-exclusion/m-p/2771394#M1038208 Marvin Rhoads 2015-10-21T01:37:25Z