SonicOS 7.1 Objects
- SonicOS 7.1 Action Objects
- About SonicOS
- Match Objects
- Zones
- How Zones Work
- Default Zones
- Security Types
- Allow Interface Trust
- Effect of Wireless Controller Modes
- Zones Overview
- The Zones Page
- Adding a New Zone
- Adding a New Zone in Policy Mode
- Adding a New Zone in Classic Mode
- Configuring a Zone for Guest Access
- Configuring a Zone for Open Authentication and Social Login
- Configuring the WLAN Zone
- Configuring the RADIUS Server
- Configuring DPI-SSL Granular Control per Zone
- Enabling Automatic Redirection to the User-Policy Page
- Cloning a Zone
- Editing a Zone
- Deleting Custom Zones
- Addresses
- Addresses Page
- About UUIDs for Address Objects and Groups
- Working with Dynamic Address Objects
- Services
- URI Lists
- Schedules
- Dynamic Group
- Email Addresses
- Match Objects
- Countries
- Applications
- Web Categories
- Websites
- Match Patterns
- Custom Match
- Profile Objects
- Endpoint Security
- Bandwidth
- QoS Marking
- Content Filter
- DHCP Option
- DNS Filtering
- Block Page
- Anti-Spyware
- Gateway Anti-Virus
- Log and Alerts
- Intrusion Prevention
- AWS
- Action Profiles
- Security Action Profile
- DoS Action Profile
- Action Objects
- App Rule Actions
- Content Filter Actions
- Object viewer
- SonicWall Support
Intrusion Prevention
Intrusion Prevention Profiles are available only in Policy Mode.
Intrusion Prevention Service (IPS) delivers a configurable, high performance Deep Packet Inspection (DPI) engine for extended protection of key network services such as Web, E-mail, file transfer, Windows services, and DNS. SonicWall IPS is designed to protect against application vulnerabilities as well as worms, Trojans, and peer-to-peer, spyware and back-door exploits. The extensible signature language used in SonicWall’s DPI engine also provides proactive defense against newly discovered application and protocol vulnerabilities. SonicWall IPS off-loads the costly and time-consuming burden of maintaining and updating signatures for new hacker attacks through SonicWall’s industry-leading Distributed Enforcement Architecture (DEA). Signature granularity allows SonicWall IPS to detect and prevent attacks based on a global, attack group, or per-signature basis to provide maximum flexibility and control false positives.
The detection works based on a Security Policy defined on POLICY | Rules and Policies > Security Policy page. For more information, refer to SonicOS 7.1 Rules and Policies Administration Guide for Policy Mode.
From the Intrusion Prevention, you can:
- View all SonicWall threat signatures from Intrusion Prevention Objects tab.
-
Create category profiles on a signature by signature basis to configure the handling of those signatures from Intrusion Prevention Profiles which can be used in configuring Intrusion Prevention Security Rule Actions on OBJECT | Action Profiles > Security Action Profile page. These Security Action Profiles can be applied in defining on POLICY | Rules and Policies > Security Policy page.
Intrusion Prevention Profiles are signatures grouped together based on attributes such as types of attack.
- Clone from an exiting one to create a new one
- Refresh and sort the table columns data to identify the specific results
- Customize columns to show or hide the table columns, and save the filter preferences for next time log in
- Viewing Intrusion Prevention Objects
- Enabling or Disabling Intrusion Prevention Objects
- Adding Intrusion Prevention Profiles
- Editing Intrusion Prevention Profiles
- Cloning Intrusion Prevention Profiles
- Deleting Intrusion Prevention Profiles
- Applying Intrusion Prevention Profiles
Was This Article Helpful?
Help us to improve our support portal