The standalone IPS is designed to protect your network right out of the box. If you just installed a new IPS, connected the network cables, power cable and turned the device on, the device will inspect traffic utilizing the onboard Digital Vaccine (DV) and default profile. Configuring the management interface is not required for protection. However, for enhanced protection and ease of management, you should configure the management interface and update the DV as soon as possible.
Next Generation Firewall (NGFW)
By default the NGFW is configured to block all traffic, this is a normal setting for firewall devices. In order to enable the IPS functionality of the NGFW appliance to inspect traffic, you will have to configure the Segments, Zones, and Rules. In addition while the IPS has a category of filters called “Application Filters” that can be utilized for protection, the NGFW device does not utilize these filters and instead relies on firewall rules to perform the same function.