Intrinsic Network High Availability (HA) Intrinsic HA, also known as “Layer-2-Fallback” (L2FB), is a mode wherein the IPS will pass traffic from one interface to its partner without inspecting the traffic. If an internal failure is detected, the device goes into L2FB mode and either permits or blocks all traffic on each segment, depending on the preference of the network administrator (see below).
Some of the checks, thresholds, and resulting actions can be customized based on each customer's HA and security requirements. For example, L2FB can be configured to fail open (Permit All) or closed (Block All) on a per segment basis. L2FB can also be enabled manually. Traffic flowing through each segment on the device will be either blocked or permitted based on the segment configuration. Any permitted traffic will not be inspected.
Both L2FB and VLAN translation are implemented on the “Broadcom Switch” so as long as the IPS device has power, uninspected traffic fill flow and VLAN translation will still occur.