There is need that I ascertain the complete control of our sites’ replication. The way I have been controlling is by ensuring replication can only be done in one way. What I need to know is whether this is able to manage all data traversing the communication ports for our two DCS. I understand that IPSEC tunnels are able to restrict the number of accessible ports required on the firewall. I also understand that it is possible to unencrypt it for the IDS/IPS to still manage the flow of traffic. But how this done? Your advice will be highly appreciated.