Overview of IDP Integration
IDP monitors network traffic to detect potentially detrimental traffic and responds to problem incidents to prevent damage to the network. By integrating IDP into an SDX-managed environment, you can use SDX extensions that support IDP to:
- Monitor subscriber traffic.
- Take actions for subscribers who are sending or receiving traffic that behaves in a detrimental manner on the network by:
- Redirecting a subscriber's Web requests to a Web page that provides information about the nature of the problem traffic
- Sending e-mail to a subscriber to provide information about the problem
- Applying policies to the subscriber interface to manage subscriber traffic, such as applying policies that reduce the amount of bandwidth available to the subscriber to limit traffic sent to and received from the subscriber
You can deploy IDP in a network to monitor all traffic, or you can configure the SDX software to direct subsets of subscriber traffic to IDP for monitoring.
The SDX Surveillance Director is the component that manages the process of selecting subscriber traffic to be monitored and activating SDX services to direct specified traffic to an IDP sensor (IDP hardware appliances that run the IDP sensor software). It divides subscribers into groups, then directs traffic for one group at a time through IDP. This means that IDP monitors different groups of traffic at different times, and that traffic for SDX-managed subscribers is periodically monitored. The Surveillance Director relies on SDX services to policy-route traffic from JUNOSe routers or to mirror traffic from JUNOS routing platforms to the IDP sensor.