03-20-2019 11:11 PM - edited 02-21-2020 08:58 AM
Hi,
Is it good practice to enable IPS on the core router to inspect internal traffic?
Please mention bad impacts to normal traffic.
On the edge firewall IPS is enabled.
Thanks
03-21-2019 12:22 AM
In mh opinion no. A core router should route traffic primarily (or more likely this is a layer 3 switch). Ips needs to be done on hardware that is made for it. In ciscos case: firepower
03-21-2019 12:23 AM
In mh opinion no. A core router should route traffic primarily (or more likely this is a layer 3 switch). Ips needs to be done on hardware that is made for it. In ciscos case: firepower
03-21-2019 01:18 AM
Cisco Best Practice to have dedicate device if the enviroment have high traffic, it also suggested not to enable any processon Core router, since it process major part of your network.
if you can post the topology we can suggest where to place this IPS to best outcome.
03-21-2019 06:33 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide