SonicOS 7.0 Security Services Administration Guide
- SonicOS 7.0
- Summary
- Managing the SonicWall Gateway Anti-Virus Service
- SonicWall GAV Multi-Layered Approach
- SonicWall GAV Architecture
- Activating the Gateway Anti-Virus, Anti-Spyware, and Intrusion Prevention License
- Setting Up SonicWall Gateway Anti-Virus Protection
- Viewing SonicWall Gateway Anti-Virus Signatures
- Anti-Spyware Service
- Intrusion Prevention Service
- Configuring Geo-IP Filters
- Configuring Botnet Filters
- Configuring App Control
- About App Control Policy Creation
- Viewing App Control Status
- Configuring App Control Global Settings
- Configuring App Control Signatures
- Configuring App Control Signatures by Category
- Configuring App Control Signatures by Application
- Configuring App Control Advanced by Signature
- Viewing Signatures
- Viewing by All Categories and All Applications by Applications
- Viewing by All Categories and All Applications by Signatures
- Viewing by All Categories and All Applications by Category
- Viewing Just One Category
- Viewing Just One Application
- Displaying Details of Signature Applications
- Displaying Details of Application Signatures
- Configuring Content Filter
- SonicWall Support
Intrusion Prevention Service Policies
This section allows the administrator to configure settings for individual attacks.
- Locate the type of attack that you would like to view. To sort by category, select a category from the Categories list. To sort by priority, select a priority level from the Priority list.
- After locating a type of attack to configure, click Config/Edit on its row. A dialog box appears where you can give specific information about the IPS Signature Settings for the selected attack. The top part of the dialog box is populated with the information from the selected Signature row.
-
Configure the fields in the dialog box for each type of attack you need to edit:
-
Signature Category- Displays the signatures organized within categories.
-
Signature Name- Displays the signatures in that category.
-
Signature ID- Displays the signature individual category ID.
-
Priority- Displays the global attack priority level.
-
Direction- Displays the direction of port forwarding to server.
- Prevention - Select whether attack prevention for this type of attack is enabled, disabled, or uses the default global settings for the attack category from the list.
- Detection - Select whether attack detection for this type of attack is enabled, disabled, or uses the default global settings for the attack category from the list.
- Included Users/Groups - Select which users or groups to include for this attack type from the list.
- Excluded Users/Groups - Select which users or groups to exclude for this attack type from the list.
- Included IP Address Range - Select an IP address range to include for this attack type from the list.
- Excluded IP Address Range - Select an IP address range to exclude for this attack type in the list box.
- Schedule - Select a time range to enforce attack protection on this attack type the list.
- Log Redundancy Filter (seconds) - Enter a time span (in seconds) to set the filter or select Use Category Settings.
-
- Save - This selection returns you to the Intrusion Prevention page. Your changes have been applied.
- Cancel - This selection discards your changes.
Was This Article Helpful?
Help us to improve our support portal