Configuring Additional Intrusion Detection And Prevention Features; Overview; Chapter 9 Configuring Additional Intrusion Detection And Prevention Features; Enabling Intrusion Detection And Prevention Processing Of Encrypted And Encapsulated Traffic (Nsm Procedure) - Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1 Manual

CHAPTER 9
Configuring Additional Intrusion Detection
and Prevention Features

Configuring Additional Intrusion Detection and Prevention Features Overview

Related Topics
Enabling Intrusion Detection and Prevention Processing of Encrypted and Encapsulated
Traffic (NSM Procedure)
Copyright © 2010, Juniper Networks, Inc.
Configuring Additional Intrusion Detection and Prevention Features Overview on page 111
Enabling Intrusion Detection and Prevention Processing of Encrypted and Encapsulated
Traffic (NSM Procedure) on page 111
You can configure additional IDP features in NSM, including enabling IDP processing of
encrypted and encapsulated traffic. For more information on configuring the following
features, see the IDP ACM online Help.
Traffic interfaces
IDP in advanced deployment modes
Enable Spanning Tree Protocol
High availability deployments
Interoperability with Secure Access devices and Infranet Controllers
NSM and Intrusion Detection and Prevention Device Management Overview on page 5
Configuring Antispoof Settings in Intrusion Detection and Prevention Devices (NSM
Procedure) on page 83
Enabling Intrusion Detection and Prevention Processing of Encrypted and Encapsulated
Traffic (NSM Procedure) on page 111
You can enable IDP processing of encrypted and encapsulated traffic through NSM.
1. Enabling SSL Decryption on page 112
2. Enabling GRE Decapsulation on page 112
3. Enabling GTP Decapsulation on page 113
111