Connecting Two Proventia IPS Appliances to One Segment of Proventia Network Security Controller

Currently, the user interface on Proventia Network Security Controller (PNSC ) explains how to set up one appliance on each 10 Gb segment. However, you can connect two appliances to one 10 Gb segment by dividing available connections between two IPS appliances. Consider this approach to achieve higher throughput rates than can be accomplished with only one appliance on a 10 Gb segment.

These instructions provide an overview for setting up two appliances on one 10 Gb segment. For general configuration information and guidelines, refer to the Proventia Network Security Controller User Guide.

WEB INTERFACE
1.) From the management interface on the NSC, select Segment Configuration.
2.) For 10Gb Segment A, select the "8 Segment IPS Device (All Segments used)" option.
3.) Choose how many links must be lost before the NSC goes into bypass.

Note: The NSC totals the number of lost links from appliances on a single segment.
Example: Two lost links on one appliance and one lost link on the other appliance equals three lost links. If the bypass setting is three, Segment A would go into bypass in this situation.

PHYSICAL CONNECTION
The connection guidelines for the 8 segment configuration tell you to connect 8 segments from a single IPS appliance to the NSC. Instead, split the connections between the two Proventia IPS appliances. That is, connect 4 segments from each IPS appliance to the 1Gb segments on the NSC.

Sample configuration:

Appliance 1: Connect IPS ports 1A - 2B to NSC ports 1 - 2.
Connect IPS ports 3C - 4D to NSC ports 3 - 4.
Appliance 2: Connect IPS ports 1A - 2B to NSC ports 5 - 6.
Connect IPS ports 3C - 4D to NSC ports 7 - 8