Limitations and Precautions for Artificial Intelligence Engine

Hardware Requirements

For versions earlier than V600R007C20SPC300, only the USG6615E/6625E and USG6575E-B/6605E-B support the artificial intelligence engine. For V600R007C20SPC300 and later versions, the USG6610E/6620E, USG6630E/6650E, USG6635E/6655E, USG6680E and USG6712E/6716E also support the artificial intelligence engine.

V600R007C20SPC300 and later versions support the SQL injection detection engine and AIE whitelist function.

License Requirements

The AIE function is under license control. For details about the license control scope, see License Control Items.

Restrictions

• After the engine bypass function is configured, the AIE function is unavailable.

• The AIE cannot collect traffic originating from and destined for the device.

• The AIE cannot process IPv6 traffic.
• The AIE does not support virtual systems and cannot detect virtual system traffic.

• If both ECA detection and SSL-encrypted traffic detection are configured, ECA detection is not performed on new encrypted traffic information, but SSL-encrypted traffic detection still takes effect.

• The predefined AIE database before delivery does not contain the detection capability for SQL injection. Therefore, you must update the AIE database first.
• For the USG6635E/6655E, USG6680E, and USG6712E/6716E, if the NAT function is configured, the IAE function cannot be configured. If both functions are configured, traffic is distributed to different CPUs, causing insufficient detection.