QuickStart Guide, Juniper Networks NetScreen-IDP 3.0 | 9
Bridge Mode and Transparent Mode
Advantages
Disadvantages
• Can reliably respond to and prevent attacks
• Simple, transparent deployment
• Allows layer-2 broadcasts (DHCP, etc.)
• No changes to routing tables or network equipment
• Can use NS-IDP-BYP for fail-open protection
• Can forward non-IP traffic (transparent mode only)
IDP
Firewall
Hub or Switch
Eth2
2.2.2.7 (Management Interface)
Management Network
Hub or Switch
2.2.2.1
Client1
IP
2.2.2.2
Client2
IP
2.2.2.3
Client3
IP
2.2.2.5
Client4
UI installed
IP
2.2.2.6
Management
Server
IP
2.2.2.4
crossover
cable
straight-through
cable
Server1
IP
1.1.1.2
GW
1.1.1.1
Server3
IP
1.1.1.4
GW
1.1.1.1
Server2
IP
1.1.1.3
GW
1.1.1.1
Eth0
no ip address (Forwarding Interface)
1.1.1.1
Eth1
no ip address
(Forwarding Interface)
Protected Network