Integrating Firewall/VPN with IPS and Layer 2 Firewalls

You can use Forcepoint NGFW in the Firewall/VPN, IPS, and Layer 2 Firewall roles together for traffic inspection.

IP address blacklisting is a shared feature for NGFW in the Firewall/VPN, IPS, and Layer 2 Firewall roles. Blacklisting allows blocking harmful traffic not just at the component that detects it, but also on other engines on the connection path.

Instead of using NGFW Engines in the IPS or Layer 2 Firewall role, you can also use layer 2 interfaces on NGFW Engines in the Firewall/VPN role for traffic inspection.