IDS/IPS Configuration
Except on the first page, right running head:
Heading1 or Heading1NewPage text (automatic)
921
Alcatel-Lucent
Beta Beta
OmniAccess 5740 Unified Services Gateway CLI Configuration Guide
IDS/IPS CONFIGURATION STEPS
This section lists the step-by-step instructions to be followed while configuring
IDS/IPS.
Step 1: Configure rule using match-list for any packet that matches classification.
(Refer to the “Common Classifiers” chapter in this guide.)
Step 2: Enter Firewall Configuration Mode.
ALU(config)# firewall
ALU(config-firewall)#
Step 3: Configure intrusion sensor. See “To Configure an IDS/IPS Sensor”
Step 4: Optional configuration commands.
• Update Snort Rule. See “To Update Snort Database”
• Rollback Snort Rule Database. See “To Rollback Snort Rule Database”
• Manually Rebuild Signature Database. See “To Manually Rebuild
Signature Database”
• Modifying Snort Rule for detecting intrusion. See “To Modify Group Level
Detection”
• Enable/Disable Snort Rule. See “To Enable/Disable Snort Rule”
• Modify Snort Rule. See “To Modify Snort Rule”
• Prevent Snort Rule Modification. See “To Modify Group Level Prevention”
Step 5: Configure Firewall Policy.
ALU(config)# policy <name>
ALU(config-firewall-policy<name>)#
Example:
ALU(config-firewall)# policy P1
ALU(config-firewall-policy-P1)#
(For a detailed information on firewall, refer “Filter and Firewall” chapter.)
Step 6: Attach the configured intrusion sensors to the firewall policy. See “To
Create a Intrusion Rule Inside a Firewall Policy”
To Next Page
Loading...
Need help?
General
