SonicOS 7.1 Objects

Table of Contents

Intrusion Prevention

Intrusion Prevention Profiles are available only in Policy Mode.

Intrusion Prevention Service (IPS) delivers a configurable, high performance Deep Packet Inspection (DPI) engine for extended protection of key network services such as Web, E-mail, file transfer, Windows services, and DNS. SonicWall IPS is designed to protect against application vulnerabilities as well as worms, Trojans, and peer-to-peer, spyware and back-door exploits. The extensible signature language used in SonicWall’s DPI engine also provides proactive defense against newly discovered application and protocol vulnerabilities. SonicWall IPS off-loads the costly and time-consuming burden of maintaining and updating signatures for new hacker attacks through SonicWall’s industry-leading Distributed Enforcement Architecture (DEA). Signature granularity allows SonicWall IPS to detect and prevent attacks based on a global, attack group, or per-signature basis to provide maximum flexibility and control false positives.

The detection works based on a Security Policy defined on POLICY | Rules and Policies > Security Policy page. For more information, refer to SonicOS 7.1 Rules and Policies Administration Guide for Policy Mode.

From the Intrusion Prevention, you can:

  • View all SonicWall threat signatures from Intrusion Prevention Objects tab.
  • Create category profiles on a signature by signature basis to configure the handling of those signatures from Intrusion Prevention Profiles which can be used in configuring Intrusion Prevention Security Rule Actions on OBJECT | Action Profiles > Security Action Profile page. These Security Action Profiles can be applied in defining on POLICY | Rules and Policies > Security Policy page.

    Intrusion Prevention Profiles are signatures grouped together based on attributes such as types of attack.

  • Clone from an exiting one to create a new one
  • Refresh and sort the table columns data to identify the specific results
  • Customize columns to show or hide the table columns, and save the filter preferences for next time log in