Description
Network traffic can be inspected at high speed for intrusion detection, prevention, protocol logging, and security monitoring. This is useful for administrators who run sensors on gateways, servers, or lab networks.
The engine can capture sensitive traffic and may block connections when configured for prevention. It should be deployed only by users who understand rulesets, privacy impact, performance cost, and network placement.