SDX 6.4.x Application Library Guide > Overview of IDP Integration > Before You Integrate IDP into an SDX Environment

Before You Integrate IDP into an SDX Environment

Integrating IDP into an SDX-managed environment requires:

• The SDX UMCidp package installed with your SDX application library software.
• SDX-managed JUNOSe routers or SDX-managed JUNOSe routers and JUNOS routing platforms in the network.
  

  NOTE: If you want to integrate IDP into an SDX-managed network that manages enterprise subscribers from a JUNOS routing platform as a subscriber access router, contact Juniper Networks Professional Services for assistance.

  
  
• Subscriber IP addresses assigned from an IP pool that is defined in the virtual router entry in the directory

Typically, IP addresses are assigned from an IP pool for residential subscribers. For enterprise subscribers or for subscribers who use a static IP address, make sure that the IP addresses are allocated from the IP pool that is defined in the virtual router entry in the directory.

• Working knowledge of SDX aggregate services. See SDX Services and Policies Guide, Chapter 1, Managing Services.
• Working knowledge of the IDP software, including IDP Manager, and familiarity with IDP documentation. See

http://www.juniper.net/techpubs/software/management/idp/

Before you extend IDP traffic monitoring to SDX subscriber traffic, you typically:

• Install the IDP sensors. The sensors monitor network traffic to detect suspicious or anomalous traffic and respond as configured.
• We recommend that IDP sensors, or sensor clusters, be one hop from all the routers in the network for which the sensor monitors traffic.(Recommended) Deploy IDP as an active gateway. In instances in which traffic is copied to an IDP sensor, ensure that IDP routes the traffic to a null interface so that the traffic is not forwarded.
• Configure IDP rules for the type of traffic incidents to report.