Intelligent application bypass

Intelligent application bypass (IAB) is a security feature that

identifies applications that you trust to traverse your network without further inspection if performance and flow thresholds are exceeded
implements on traffic allowed by access control rules or the access control policy's default action, before the traffic is subject to deep inspection, and
can be configured so that when an inspection performance threshold is exceeded, IAB trusts all traffic that exceeds any flow bypass threshold, regardless of the application type.

Additional information

For example, if a nightly backup significantly impacts system performance, you can configure thresholds that, if exceeded, trust traffic generated by your backup application.

A test mode allows you to determine whether thresholds are exceeded and, if so, to identify the application flows that would have been bypassed if you had actually enabled IAB (called bypass mode).

This graphic illustrates the IAB decision-making process:

A flow chart that shows performance thresholds must be exceeded before flow thresholds are considered when determining application bypass