About tuning parameters

Tuning parameters affect intrusion prevention settings at the group and site levels.

Edit and configure tuning parameters for groups of appliances managed through SiteProtector™. View the parameters that affect a specific appliance at the site level with IPS Local Management Interface.

You can tune the following components on a group of appliances:
  • Intrusion prevention responses
  • Intrusion prevention security risks
  • Firewall logging
  • Updates

Default Values

Tuning parameters consist of name/value pairs. Each name/value pair has a default value. For example, the parameter np.firewall.log is a parameter that determines whether to log the details of packets that match firewall rules you have enabled. The default value for this parameter is on.

Commonly used tuning parameters are listed on the Tuning Parameters page. You can add tuning parameters to the list on this page and to the list of advanced parameters on the Update Settings page. Even if a tuning parameter is not listed on either page or not enabled, its behavior is still controlled by the default values defined for it. To change the behavior of a tuning parameter, you must configure it, enable it, and then apply a default value that includes the wanted behavior.

Important: Do not delete any default tuning parameters without advisement from Technical Support.