Intrusion Detection/Prevention

Netronome Agilio SmartNICs accelerate Intrusion Detection System (IDS) and Intrusion Prevention System (IPS) applications through tight coupling with x86 based processors over a Data Plane Development Kit (DPDK) poll mode driver (PMD). IDS and IPS applications are best suited for general-purpose x86 processors due to the fluid nature of threat updates and modifications, but acceleration based on flow processing is critical to scaling these applications to 25/40/1000GbE rates. On a per-flow basis, traffic can be intelligently steered to go through the IDS/IPS processing, dropped, rate limited, or sent to an adjacent interface to the network.