Using SNORT rule profiling

Use SNORT Rule Profiling to access SNORT rule performance files.

About this task

Navigating in IPS Local Management Interface: Review Analysis and Diagnostics > Diagnostics > SNORT Rule Profiling

Important: Use the SNORT rule profiling feature only when needed because it can impact SNORT engine performance.

For this feature to work, ensure that the SNORT engine and rule profiling are enabled. Find the SNORT system and the rule profiling settings at Secure Protection Settings > Advanced IPS > SNORT Configuration and Rules. See Configuring SNORT rule profiling for information.

Procedure
  1. Click the Refresh button to see the latest performance file.
    Note: Clicking Refresh stops and restarts the SNORT engine.
  2. Download or delete files as needed.