Juniper Networks IDP 800 Manuel D’Utilisation
IDP 75, 250, 800, and 8200 Installation Guide
4
IDP Configuration Basics
Figure 2: Transparent Mode (Inline Active)
Table 3 lists the advantages and the disadvantages of using the sensor in active
transparent (inline) mode.
transparent (inline) mode.
Table 2: Advantages and Disadvantages of Sniffer Mode (Passive)
Advantages
Disadvantages
Seamlessly replaces the current intrusion
detection
detection
Causes minimal network changes
Does not create an additional
point-of-failure gateway
point-of-failure gateway
Monitors and logs suspicious network
activity
activity
Passively monitors with limited prevention
only
only
Requires a hub or the Switched Port Analyser
(SPAN) port of a switch
(SPAN) port of a switch
Management Server
IP 2.2.2.4
IP 2.2.2.4
User Interface
IP 2.2.2.5
IP 2.2.2.5
Protected Machines
Hub or
Switch
Switch
Firewall
eth2
No ip address
Forwarding Interface
No ip address
Forwarding Interface
Server1
IP 1.1.1.2
GW 1.1.1.1
IP 1.1.1.2
GW 1.1.1.1
Server2
IP 1.1.1.3
GW 1.1.1.1
IP 1.1.1.3
GW 1.1.1.1
Server3
IP 1.1.1.4
GW 1.1.1.1
IP 1.1.1.4
GW 1.1.1.1
IP 2.2.2.1
IP 1.1.1.1
IDP Sensor
Hub or
Switch
Switch
eth3
No IP address
Forwarding Interface
No IP address
Forwarding Interface
eth0 IP 2.2.2.7 MGT
Interface
Interface
Internet