Example: Configuring IDP Inline Tap Mode

This example shows how to configure a device for inline tap mode.

Requirements

Before you begin, review the inline tap mode feature. See Understanding IDP Inline Tap Mode.

Overview

The inline tap mode feature provides passive, inline detection of application layer threats for traffic matching security policies which have the IDP application service enabled.

Note: IDP inline tap mode does not require a separate tap or span port.

Configuration

Step-by-Step Procedure

To configure a device for inline tap mode:

1. Set inline tap mode.
   [edit security]user@host# set forwarding-process application-services maximize-idp-sessions inline-tap
2. If you are done configuring the device, commit the configuration.
   [edit]user@host# commit
3. Restart the system from operational mode.
   user@host> request system reboot

   Note: When switching to inline tap mode or back to regular mode, you must restart the device .

4. If you want to switch the device back to regular mode, delete the inline tap mode.
   [edit security]user@host# delete forwarding-process application-services maximize-idp-sessions inline-tap

Verification

To verify that inline tap mode is enabled, enter the show security idp status command. The forwarding process mode line item will show “Forwarding process mode : maximizing sessions (Inline-tap)”

Related Topics

• IDP Policies Overview
• Understanding IDP Policy Rules
• Understanding IDP Policy Rulebases