SonicWALL Comprehensive Guide to SonicWall Intrusion Prevention Settings
Page 32

TotalSecure Configuration Task List

Navigating the Gateway Anti-Virus Signatures Table

The SonicWALL GAV signatures are displayed fifty to a page in the Gateway Anti-Virus Signatures table. The Items field displays the table number of the first signature. If you’re displaying the first page of a signature table, the entry might be Items 1 to 50 (of 58). Use the navigation buttons to navigate the table.Searching the Gateway Anti-Virus Signature Database

You can search the signature database by entering a search string in the Lookup Signatures Containing String field, then clicking the edit (Notepad) icon.

Setting Up SonicWALL Intrusion Prevention Service Protection

Activating the SonicWALL Intrusion Prevention Service license on your SonicWALL security appliance does not automatically enable the protection. To configure SonicWALL Intrusion Prevention Service to begin protecting your network, you need to perform the following steps:

1.Enable SonicWALL Intrusion Prevention Service

2.Specify the Priority attack Groups

3.Apply SonicWALL Intrusion Prevention Service Protection to Zones

Note: For complete instructions on setting up SonicWALL Intrusion Prevention Service, refer to the SonicWALL Intrusion Prevention Service Administrator’s Guide available on the SonicWALL documentation Web site <http://www.sonicwall.com/us/3396.html>.

Selecting Threat Protection > Intrusion Prevention displays the configuration settings for SonicWALL IPS on your SonicWALL security appliance.

The Intrusion Prevention Service page is divided into three sections:

IPS Status - displays status information on the state of the signature database, your SonicWALL IPS license, and other information.

IPS Global Settings - provides the key settings for enabling SonicWALL IPS on your SonicWALL security appliance, specifying global SonicWALL IPS protection based on three classes of attacks, and other configuration options.

IPS Policies - allows you to view SonicWALL IPS signatures and configure the handling of signatures by category groups or on a signature by signature basis. Categories are signatures grouped together based on the type of attack.

After activating your Intrusion Prevention Service license, you must enable and configure SonicWALL IPS on the SonicWALL management interface to before intrusion prevention policies are applied to your network traffic.

Enabling SonicWALL IPS

SonicWALL IPS must be globally enabled on your SonicWALL security appliance by checking the Enable IPS check box in the IPS Global Settings section. A checkmark in the Enable IPS check box turns on the service on your SonicWALL security appliance.

32 SonicWALL TZ 180 TotalSecure

Page 31 Page 33
Image 32
Page 31 Page 33
Contents Document Scope What is TotalSecure?Introduction Every SonicWALL TotalSecure solution includes the following Benefits of TotalSecureSonicWALL Gateway Anti-Virus GAV OverviewHow Does GAV Work? BenefitsSonicWALL Gateway Anti-Virus/Intrusion Prevention Features SonicWALL GAV Multi-Layered Approach Remote Site Protection Internal Network ProtectionHttp File Downloads SonicWALL GAV Architecture Server ProtectionDisabling the SonicWALL GAV/IPS Engine Protocol HandlingSmtp How Does IPS Work? SonicWALL Intrusion Prevention ServiceIPS Overview What is a Zone? Spyware Threat SonicWALL Anti-Spyware Security ServiceSonicWALL Anti-Spyware SonicWALL Anti-Spyware How Does CFS Premium Work? SonicWALL Content Filtering Service PremiumCFS Overview How Does DPI Work? SonicWALL Deep Packet InspectionDPI Overview Deep Packet Inspection Flow Diagram SonicWALL Security Dashboard Security Dashboard Overview SonicWALL Security Dashboard What is Security Dashboard? How Does the Security Dashboard Work?Registering Your Appliance on MySonicWALL Registering Your Appliance on MySonicWALL TotalSecure Configuration Task List Registering Your SonicWALL Security ApplianceApplying SonicWALL GAV Protection on Interfaces Setting Up SonicWALL GAV ProtectionEnabling SonicWALL GAV Applying SonicWALL GAV Protection on Zones SonicOS Enhanced Edit ZoneViewing SonicWALL GAV Status Information Enabling Inbound Inspection Updating SonicWALL GAV SignaturesSpecifying Protocol Filtering Configuring Client Alerts and an Exclusion List Enabling Outbound Smtp InspectionRestricting File Transfers Configuring Client AlertsConfiguring a SonicWALL GAV Exclusion List Viewing SonicWALL GAV Signatures Displaying SignaturesNavigating the Gateway Anti-Virus Signatures Table Enabling SonicWALL IPSEnable IPS Logging Brute-force Baseline SetupSetting Up SonicWALL Anti-Spyware Protection Enabling SonicWALL Anti-Spyware Specifying Spyware Danger Level Protection Setting Up CFS PremiumGlossary Glossary Related Documentation Solution Document Version History Version Number Date Related Documentation SonicWALL TZ 180 TotalSecure
Related manuals
Manual 34 pages 40.02 Kb Manual 38 pages 55.88 Kb
Top Page Image Contents