• SonicOS 7.0
• Summary
  • Synchronize Licenses
  • Security Services Settings
  • Signature Downloads Through a Proxy Server
  • Security Services Information
• Managing the SonicWall Gateway Anti-Virus Service
  • SonicWall GAV Multi-Layered Approach
    • Remote Site Protection
    • Internal Network Protection
    • HTTP File Downloads
    • Server Protection
    • Cloud Anti-Virus Database
  • SonicWall GAV Architecture
  • Activating the Gateway Anti-Virus, Anti-Spyware, and Intrusion Prevention License
  • Setting Up SonicWall Gateway Anti-Virus Protection
    • Viewing SonicWall Gateway Anti-Virus Status Information
      • Checking the SonicWall Gateway Anti-Virus Signature Database Status
      • Updating SonicWall Gateway Anti-Virus Signatures
    • Enabling SonicWall Gateway Anti-Virus
    • Applying SonicWall Gateway Anti-Virus Protection on Zones
    • Specifying Protocol Filtering
      • Enabling Inbound Inspection
      • Enabling Outbound Inspection
      • Restricting File Transfers
        • FTP Settings
        • Exclusion Settings
      • Resetting Gateway Anti-Virus Settings
    • Configuring Gateway Anti-Virus Settings
      • Configuring Gateway Anti-Virus Settings
      • Configuring HTTP Clientless Notification
      • Configuring a SonicWall GAV Exclusion List
    • Configuring Cloud Gateway Anti-Virus
  • Viewing SonicWall Gateway Anti-Virus Signatures
    • Displaying Signatures
    • Navigating the Gateway Anti-Virus Signatures Table
    • Searching the Gateway Anti-Virus Signature Database
• Anti-Spyware Service
  • Anti-Spyware Status
  • Anti-Spyware Global Settings
  • Signature Groups
  • Protocols
  • Anti-Spyware Signatures
• Intrusion Prevention Service
  • About Intrusion Prevention Service
  • IPS Status
  • IPS Global Settings
  • Enabling Intrusion Prevention Services
  • Intrusion Prevention Service Policies
• Configuring Geo-IP Filters
  • Configuring Geo-IP Filtering
  • Creating Custom Country Lists
  • Customizing Web Block Page Settings
  • Using Geo-IP Filter Diagnostics
    • Geo-IP Cache Statistics
    • Custom Countries Statistics
    • Show Resolved Locations
    • Check GEO Location Server Lookup
    • Incorrectly Marked Address
• Configuring Botnet Filters
  • Configuring Botnet Filtering
  • Creating Custom Botnet Lists
    • Creating a Custom Botnet List
    • Editing Custom Botnet List Entries
  • Downloading Dynamic Botnet list
  • Configuring Dynamic HTTP Authentication
  • Customizing Web Block Page Settings
  • Using Botnet Filter Diagnostics
    • Botnet Cache Statistics
    • Botnets Statistics
    • Show Resolved Botnet Locations
    • Check Botnet Server Lookup
    • Incorrectly Marked Address
  • Displaying the Status of the Botnet Feature and Database
• Configuring App Control
  • About App Control Policy Creation
  • Viewing App Control Status
  • Configuring App Control Global Settings
    • About App Control Global Settings
    • Enabling App Control
      • Enabling App Control Globally
      • Enabling App Control on Zones
      • Configuring Logging and Log Filter Interval
      • Enabling App Control Filename Logging
      • Configuring App Control Settings
  • Configuring App Control Signatures
    • Configuring App Control Signatures by Category
    • Configuring App Control Signatures by Application
    • Configuring App Control Advanced by Signature
    • Viewing Signatures
      • Viewing by All Categories and All Applications by Applications
      • Viewing by All Categories and All Applications by Signatures
      • Viewing by All Categories and All Applications by Category
      • Viewing Just One Category
      • Viewing Just One Application
      • Displaying Details of Signature Applications
      • Displaying Details of Application Signatures
• Configuring Content Filter
  • SonicWall CFS
    • CFS Status
    • Global Settings
    • CFS Exclusion
  • CFS Custom Category
  • Websense Enterprise
    • Websense Server Status
    • General Settings
    • Block Web Features
    • CFS Exclusion
    • Blocking Page
• SonicWall Support
  • About This Document

IPS Global Settings

• Enable IPS - Click this setting to enable the Intrusion Prevention. After service is enabled, the next three checkboxes become available.

  Select the checkboxes of the interface ports to monitor, WAN, LAN, or DMZ/WLAN/OPT. These three checkboxes become available when Enable IPS is checked.

• The next section allows you to configure the level of attack to monitor and in what way. You can set different levels of protection for High Priority Attacks, Medium Priority Attacks, and Low Priority Attacks.
  • Prevent All - Select this option to detect, log, and prevent all attacks of this level.
  • Detect All - Select this option to detect and log only.
  • Log Redundancy Filter (Seconds) - To prevent the log from becoming overloaded with entries for the same attack, enter a value in the field. For example, if you entered a value of 30 seconds and there were 100 SubSeven attacks during that period of time, only one attack would be logged during that 30 second period.
  • Configure IPS Settings - This is one of four buttons below the attack level chart. It brings up the following dialog box.
    • IPS Exclusion List
    • Enable IPS Exclusion List - Select this field to configure the SonicWall security appliance to skip Intrusion Prevention enforcement for a specified IP address object or range of address objects. The fields that follow are only available when this field is selected.
      • Use Address Object — Select an address object from the drop-down menu.
      • Use Address Range —Fill in the address range limits to exclude. If the address range is selected, you can Add or Delete All of the choices.
• Update IPS Signature Database - Select to force the firmware to download all signatures.
• Reset IPS Settings & Policies - Click to reset your IPS settings to the defaults.
• Import CSV File - This button imports the CSV file.
• Click OK or Cancel when you are done with this page.

Save - brings up a dialog box requesting more information about the schedule and persistence of the individual changes you have made.

Cancel - clears all the settings on the screen.