Table of Contents
Advertisement
3.3.8. Intrusion Prevention System (IPS)
This detects anomalies such as attack codes in traffic and blocks traffic where anomalies are detected.
User Network
It can prevent attacks by detecting pattern and matching pre-registered intrusion methods and prevents
communication when an attack to the network that cannot be detected by a firewall is recognized.
[Detection targets]
Abnormal protocol, abnormal traffic and port scan.
[Behavior of operation and notification when threat is detected]
Block setting
Operation during detection
Block unauthorized intrusion
access from the outside, or log
output *1
*1: When an illegal protocol is detected, log message is outputted without cutting off the communication.
Illegal protocol refers to the communication that is not completely in accordance with the TCP/IP protocol among
the communication where the threat is not detected. Since there is no threat in this communication, it is not
blocked. Of course if a threat is detected, it will be blocked.
*2: It must be set from Web setting.
Log only setting
Operation during detection
Log output only
[Individual permission setting]
Specific communication detected threat can be set as non-threat detection targets.
SA3500G
How to notify during detection
・Log is displayed in the security log.
(It is necessary to view it in Web
setting.)
・Mail notification *2
・Lamp display of PATLITE device *2
How to notify during detection
Log in the security log
(It is necessary to view it in Web
setting.)
Prevention
How to cancel detection state
-
How to cancel detection state
-
|Function Specification
Internet
51
Advertisement
Table of Contents
