Preventing Attacks; Enabling Nids Attack Prevention - Fortinet FortiGate 100 Installation & Configuration Manual
Fortinet network device installation and configuration guide
Hide thumbs
Also See for FortiGate 100:
- Installation manual (54 pages) ,
- Administration manual (388 pages)
Table of Contents
Advertisement
Network Intrusion Detection System (NIDS)
Preventing attacks
Enabling NIDS attack prevention
FortiGate-100 Installation and Configuration Guide
Figure 35: Example user-defined signature list
Downloading the user-defined signature list
You can back up the user-defined signature list by downloading it to a text file on the
management computer.
1
Go to NIDS > Detection > User Defined Signature List.
2
Select Download.
The FortiGate unit downloads the user-defined signature list to a text file on the
management computer. You can specify a location to which to download the text file
as well as a name for the text file.
NIDS attack prevention protects the FortiGate unit and the networks connected to it
from common TCP, ICMP, UDP, and IP attacks. You can enable the NIDS attack
prevention to prevent a set of default attacks with default threshold values. You can
also enable and set the threshold values for individual attack signatures.
Note: After the FortiGate unit reboots, the NIDS attack prevention and synflood prevention are
always disabled.
•
Enabling NIDS attack prevention
•
Enabling NIDS attack prevention signatures
•
Setting signature threshold values
•
Configuring synflood signature values
1
Go to NIDS > Prevention.
2
Select Enable in the top left corner.
Enabling NIDS attack prevention
225
- Quick Links:
- Connecting to the Web-Based Manager
Hide quick links:
Advertisement
Table of Contents
