Cisco Cisco Firepower Management Center 4000

Typically, you use Rule Latency Thresholding in the intrusion policy to fast-path packets after the 
latency threshold value is exceeded. Rule Latency Thresholding does not shut down the engine or 
generate troubleshoot data. For more information, see 

.

AAB is activated only when an excessive amount of time is spent processing a single packet. If AAB 
engages, the system kills all Snort processes.

If detection is bypassed, the device generates a health monitoring alert. For more information on that 
health monitoring alert, see 

For more information about enabling Automatic Application Bypass and setting the bypass threshold, 
see 

Any

feature dependent

You can use the Advanced section of the Devices tab to modify the Automatic Application Bypass and 
Inspect Local Router Traffic settings. You can also configure fast-path rules, as explained in 

. 

Note the following:

you can configure fast-path rules only on 8000 Series and 3D9900 devices.

you can configure 

 only on Series 3 devices

Admin/Network Admin

Select 

.

The Device Management page appears.

Next to the device where you want to edit advanced device settings, click the edit icon (

).

The Interfaces tab for that device appears.

Click 

.

The Devices tab appears.

For stacked devices, you edit the advanced device settings for the stack on the Stack page of the 
appliance editor.

Next to the 

 section, click the edit icon (

).

The Advanced pop-up window appears.

Optionally, select

 if your network is sensitive to latency. Automatic 

Application Bypass is most useful in inline deployments. For more information, see 

.