Installation guide
161
Example Headquarters DMZ Network
Example Headquarters DMZ Network
Illustration C.4 Example Headquarters DMZ Network
DMZ IPS
In the example scenario, the DMZ IPS in the Headquarters DMZ network is a single inline IPS
engine.
Table C.3 Single IPS in the Example Scenario
Network
Interface
Description
Inline Interfaces
The DMZ IPS is deployed in the path of traffic between the Firewall and the DMZ
network switch. All the traffic flows through the IPS engine’s Inline Interface pair.
Normal Interfaces
The Normal Interface is connected to the DMZ network using the IP address
192.168.1.41. This Normal Interface is used for control connections from the
Management Server, sending event information to the HQ Log Server, and for TCP
connection termination.
DMZ Servers
HQ Firewall
192.168.1.1
192.168.1.41