Chapter 2: Software Overview
For IDP deployments, centralized management provides the following benefits:
■Centralized management for IDP appliances and other network devices
■Consolidated logs from different devices in a single repository
■Centralized management of enterprise security policies
■Simplified management for attack signature updates
■
For information about installing NSM and using NSM distributed management features, management objects (such as address objects, service objects, and templates), and navigational and display features, see the NSM documentation.
J-Security Center Updates Overview
The Juniper Networks Security Center
The IDP detector engine is a dynamic protocol decoder that includes support for decoding more than 60 protocols and more than 500 service contexts. You should update IDP detector engine when you first install IDP, whenever you upgrade, and whenever alerted to do so by Juniper Networks. You can view release notes for detector engine updates at
http://www.juniper.net/techpubs/software/management/idp/de/.
The NSM attack database stores data definitions for attack objects. Attack objects are patterns comprising stateful signatures and traffic anomalies. Security policy rules direct the IDP engine to inspect traffic for attack objects. We recommend you schedule automatic updates for the NSM attack database.
For more information about detector engine and attack object updates, see the IDP Administration Guide.