I am interested in hearing from anyone that knows about or uses the IPS features in the Cisco ASA. I'm looking to see how's it used, best practices, etc. How do you like it? User friendly? What kind of ongoing administration do you do with it? Do you do more logging or actually blocking certain traffic? I look forward to your responses.