Under the Intrusion Protection>Settings>Global Settings tab, is there a way to disable the IDS scanning of data between two networks?
Basically, I have an internal network and the DMZ, and I don't want traffic originating in either network to go through the IDS/Snort engine, as this really kills the throughput between the two networks for backups and major file transfers.
(knocks the gigabit connection down to about 2100KB/s due to the 1GHz Via C3 cpu).
However, I'd still like to keep IDS/Snort active on my external interface (and all traffic that flows through it).
The "Help" tab for "Local Networks" is stated below, but doesn't this seem redundant? You can select networks to be protected, but if nothing is selected, all networks are protected...so, how do you NOT protect certain networks??? [:S]
Local Networks: You can select the networks to be protected. If this is left empty, then all traffic will automatically be protected by the Intrusion Protection System by default.
This thread was automatically locked due to age.