Intrusion Prevention Profiles are available only in Policy Mode.
Intrusion Prevention Service (IPS) delivers a configurable, high performance Deep Packet Inspection (DPI) engine for extended protection of key network services such as Web, E-mail, file transfer, Windows services, and DNS. SonicWall IPS is designed to protect against application vulnerabilities as well as worms, Trojans, and peer-to-peer, spyware and back-door exploits. The extensible signature language used in SonicWall’s DPI engine also provides proactive defense against newly discovered application and protocol vulnerabilities. SonicWall IPS off-loads the costly and time-consuming burden of maintaining and updating signatures for new hacker attacks through SonicWall’s industry-leading Distributed Enforcement Architecture (DEA). Signature granularity allows SonicWall IPS to detect and prevent attacks based on a global, attack group, or per-signature basis to provide maximum flexibility and control false positives.
The detection works based on a Security Policy defined on POLICY | Rules and Policies > Security Policy page. For more information, refer to SonicOS 7.1 Rules and Policies Administration Guide for Policy Mode.
From the Intrusion Prevention, you can:
Create category profiles on a signature by signature basis to configure the handling of those signatures from Intrusion Prevention Profiles which can be used in configuring Intrusion Prevention Security Rule Actions on OBJECT | Action Profiles > Security Action Profile page. These Security Action Profiles can be applied in defining on POLICY | Rules and Policies > Security Policy page.
Intrusion Prevention Profiles are signatures grouped together based on attributes such as types of attack.