Thank you for the improvement in IPS, guys. I see the need for IPS, but don't have a lot of experience with it.
To help new admins ensure the IPS setup is correct, it would be very helpful to have a testing option within the module to notify the sysadmin (via SNMP, email, or at the least via the event log) of a potential problem while the rules are active. With the testing option selected, those rules which are enabled would be used to evaluate traffic but would not block any sessions. This would allow the sysadmin to tune the rules for their network in a testing mode while not impacting traffic. Once the testing option is unchecked, the module will then take action on the traffic based on the selected rules.