Use the Responses area to configure
how the appliance notifies you about the following connection events:
Email, quarantine responses, SNMP traps, or user-specified responses.
About this task
Navigating in the IPS Local Management Interface:
Navigating
in SiteProtector™ Management:
select theConnection Events policy
Procedure
- Click the Add icon.
- Click the appropriate tab in the Responses area
and set the following:
Option |
Description |
Email |
Specifies the email address that receives alerts about events. Note: If
the email address does not appear in the list, you can configure email
in .
|
Quarantine |
Specifies responses that block intruders, including worms
and Trojan horses, when the appliance detects events.Notes: - Quarantine responses work only when you
have configured the appliance to run in inline protection mode.
- If the quarantine response does not appear in the list, you can
configure quarantine responses in .
|
SNMP |
Sends an SNMP trap including pertinent information about the
event. Note: If the SNMP trap does not appear in the list, you can
configure SNMP traps in .
|
User Specified |
Specifies a user-specified response for the event. Note: If
the user-specified response does not appear in the list, you can configure
user-specified responses in .
|
What to do next
On the Add Connection Events window,
you can set general settings and configure IP address and ports for
filtering events.