Casio ISA550WBUN3K9 manual Updating IPS Signature Database

To log IPS events, you must first specify the action for the signatures, and then go to the Device Management > Logs pages to configure the log settings and log facilities. See Log Management, page 442.

To save IPS logs to the local syslog daemon, you must enable the Log feature, set the log buffer size and the severity for local logs, and then enable the Local Log settings for the Intrusion Prevention (IPS) facility.

To save IPS logs to a remote syslog server, you must enable the Log feature, specify the Remote Log settings, and enable the Remote Log settings for the Intrusion Prevention (IPS) facility.

STEP 2 Click OK to save your settings.

STEP 3 Click Save to apply your settings.

Updating IPS Signature Database

You can automatically check for signature updates from Cisco’s signature server on a weekly basis or manually check for signature updates at any time by clicking Check for Update Now. If a newer signature file is available, the new signature file will be automatically downloaded to your device.

You can also first download the latest signature file from Cisco’s signature server to your local PC, and then manually update the IPS signatures through the Configuration Utility.

A valid Cisco.com account is required to check for signature updates and download the IPS signature file from Cisco’s signature server. Go to the Device Management > Cisco Services & Support > Cisco.com Account page to configure your Cisco.com account credentials on the security appliance. See Configuring Cisco.com Account, page 424.

NOTE IPS and Application Control use the same signature database. Updating the IPS signatures will also update the application signatures at the same time.

STEP 1 Click Security Services > Intrusion Prevention (IPS) > IPS Policy and Protocol Inspection.

The IPS Policy and Protocol Inspection window opens.

STEP 2 In the Automatic Update Signature Database area, the following information is displayed: