Hello Team.
I would like to confirm with you all something that I found on this withepaper: https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/docs/vmware-nsx-distributed-ids-ips-tech-white-paper.pdf
It is possible uses NSX IDS/IPS with VLAN Segment? Or it's necessary/mandatory to use Overlay Segment to implement NSX IDS/IPS?
If my understanding is right, the IDS/IPS is apply after the traffic being "approved" by DFW even if this is a VLAN Segment traffic.
Your understanding is correct. This IDS/IPS engine is part of the distributed firewall, which does not require NSX overlay segments to function.
Thanks man!