Table of Contents
Advertisement
MH-5001 User Manual
23.1 Demands
Besides firewall, you still need Intrusion Prevention System to protect your networks. Crackers hack into your system through
Firewall-allowed channels with sophisticated skills. Most often, they attack specific application servers such as SNMP, Web,
and FTP services in your DMZ.
23.2 Objectives
1. Detect any attacks towards your DMZ servers.
2. Instantly notify your network administrators what attacks have been detected.
23.3
Methods
1. Specify where to put Web server and let the IPS on the MH-5001 prevent the network from the attacks.
2. Setup logs to send mails to the specified email address during the defined time. You can set daily/weekly to receive mails
and periodically monitor the IPS logs.
The feature of the IPS can only be available while MH-5001 connects to the Internet via Default WAN Link.
This chapter introduces Intrusion Prevention System (IPS) and explains how to implement it.
Figure 23-1 Some crackers in the Internet would try to hack your company
Intrusion Prevention Systems
183
Chapter 23
Intrusion Prevention Systems
Chapter 23
Advertisement
Table of Contents
Troubleshooting
