Procedure

1. Select Devices → Virtual Segments, and then click New.
2. Enter the following:
   • Name — Must be unique among all existing virtual segments.
   • Description — A brief explanation about the virtual segment.
3. Complete any of the following criteria you want to use to define the traffic for the virtual segment:
   • VLAN— Can be one or more comma-separated VLAN IDs or a Named Resource.
   • Source IP Address — Can be one or more comma-separated CIDRs or a Named Resource. Range-based Named Resources is not supported.
   • Destination IP Address — Can be one or more comma-separated CIDRs or a Named Resource. Ranged-based Named Resources is not supported.

   Note For TPS TX Series and TPS TXE Series devices, the slot number is represented.

4. When the Segment Group Membership dialog box displays, select a group for this virtual segment.
5. If no custom segment groups have been created, the virtual segment is automatically assigned to the default segment group. To create a new segment group or change group membership, see Create a segment group and Edit segment group membership.
6. From the left navigational menu, select Physical Segments.
   • Select one or more physical segments from the Physical Segments list that you want to assign to the virtual segment.
   • To add a physical segment to the list, select Add. From the Select Physical Segment screen, select the segment or segments to add.
   When you create a virtual segment on a stack of IPS devices, the available physical segments consist of network segments on slots 1–3.

   Note For TPS TX Series and TPS TXE Series devices, the segments are listed by slot numbers.

7. Click OK .
8. To validate the virtual segment setup, select Validation Report. The Validation Report screen provides information about the severity and summary of error status. To view additional information, click Details.
9. Click OK.