Hello Archit,This topic is covered in the IPS CLI guide. I'm assuming you're using 7.1 release:http://www.cisco.com/en/US/docs/security/ips/7.1/configuration/guide/cli/cli_signature_definitions.htmlThanks,Praveer.
>> As I understand in such schema we will need to use addtional interface-inline-pair for each monitored VLAN.Actually you can create a single inline interface pair and create multiple vlan groups within it. Each group can have its own sub-interface ...
TCP resets are sent to both: the client(possibly outside the network) and the server(internal). This not just helps cleaning up the state on the internal server(which we care about) but also avoids further packets from the client on the same flow.
