EasyManuals Logo

Fortinet FortiGate FortiGate-3000 Administration Guide

Fortinet FortiGate FortiGate-3000
398 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #299 background imageLoading...
Page #299 background image
FortiGate-3000 Administration Guide Version 2.80 MR6
FortiGate-3000 Administration Guide 01-28006-0010-20041105 299
IPS
The FortiGate Intrusion Prevention System (IPS) combines signature- and anomaly-
based intrusion detection and prevention with low latency and excellent reliability. The
FortiGate unit can record suspicious traffic in logs, can send alert email to system
administrators, and can log, pass, drop, reset, or clear suspicious packets or
sessions. You can adjust some IPS anomaly thresholds to work best with the normal
traffic on the protected networks. You can also create custom signatures to customize
the FortiGate IPS for diverse network environments.
You can configure the IPS globally and then enable or disable all signatures or all
anomalies in individual firewall protection profiles. Table 23 describes the IPS settings
and where to configure and access them. To access protection profile IPS options go
to Firewall > Protection Profile, select edit or Create New, and select IPS. See
“Protection profile options” on page 231.
Protection profile configuration
For information about adding protection profiles to firewall policies, see “To add a
protection profile to a policy” on page 236.
IPS updates and information
FortiProtect services are a valuable customer resource and include automatic updates
of virus and IPS (attack) engines and definitions through the FortiProtect Distribution
Network (FDN). The FortiProtect Center also provides the FortiProtect virus and
attack encyclopedia and the FortiProtect Bulletin.
Visit the FortiProtect Center at http://www.fortinet.com/FortiProtectCenter/.
To set up automatic and push updates see “Update center” on page 126.
Table 23: IPS and Protection Profile IPS configuration
Protection Profile IPS options IPS setting
IPS Signature IPS > Signature
Enable or disable IPS signatures for all
network services.
View and configure a list of predefined
signatures.
Create custom signatures based on the
network requirements.
IPS Anomaly IPS > Anomaly
Enable or disable IPS anomalies for all
network services.
View and configure a list of predefined
anomalies.

Table of Contents

Other manuals for Fortinet FortiGate FortiGate-3000

Preview: Quick Start Guide
Quick Start Guide2 pages
Preview: Install Guide
Install Guide66 pages
Preview: Installation Guide
Installation Guide56 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Fortinet FortiGate FortiGate-3000 and is the answer not in the manual?

Fortinet FortiGate FortiGate-3000 Specifications

General IconGeneral
BrandFortinet
ModelFortiGate FortiGate-3000
CategoryFirewall
LanguageEnglish

Related product manuals