Are there any configuration requirements to properly test with pcap traffic?

marcus · August 26, 2025, 08:27:30 PM

I'm referring to running pcap traffic through the device from a traffic server, and with the firewall *disabled* in order to focus on the IDS/IPS. Not capturing or replaying traffic from within it.

For instance:

Promiscuous mode on any of the interfaces or the IDS?
Any special NIC settings
Any other tuning requirements

Thanks -

Are there any configuration requirements to properly test with pcap traffic?

marcus

August 26, 2025, 08:27:30 PM