Secure Protection Settings help you
to monitor network traffic and block attacks. After you have set them,
these settings seldom change. However, you may occasionally need to
perform maintenance tasks to keep the appliance properly configured.
Configuring security modules
Use the Security Modules options on
your Network
IPS appliance
to configure features for analyzing suspect content, protecting web
applications, and enabling X-Force Virtual Patch® functionality.
Configuring advanced IPS options
Use the Advanced IPS options on your Network
IPS appliance
to configure settings that tune intrusion prevention system settings
specifically to meet security requirements. Configure options such
as protection domains, security events, user defined events, OpenSignatures,
connection events, tuning parameters, and the integrated SNORT system.
Configuring response tuning
Use Response Tuning on your Network
IPS appliance
to configure quarantine rules and to set responses to events. Use
it to tune responses in your security policies with response filters
and to configure rolling packet capture settings.
Configuring the firewall
Use Firewall Rules on your Network
IPS appliance
to configure rules to drop or block attacks before they enter the
network.
About the block response
The block response is a default response that blocks attacks
by dropping packets and sending resets to TCP connections.
About the ignore response
Set the ignore response to configure the appliance to disregard
packets that match criteria specified within a security event or a
response filter.