Creating A New Security Policy (Nsm Procedure) - Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1 Manual

Configuring Intrusion Detection and Prevention Devices Guide
Table 16: IDP Security Policy Templates (continued)
Template
getting_started
idp_default
web_server
Related Topics

Creating a New Security Policy (NSM Procedure)

Table 17: New Policy Wizard: Page One
Setting
Name
Comments
34
Description
Contains very open rules. Useful in controlled lab environments, but should not be deployed on
heavy traffic live networks.
Contains a good blend of security and performance.
Protects HTTP servers from remote attacks.
If you use these templates, we advise you customize them for your deployment. At a
minimum, you should change the destination IP setting from Any to the IP addresses for
specific servers you want to protect. For more information, see the IDP Concepts &
Examples guide.
Intrusion Detection and Prevention Devices and Security Policies Overview on page 31
Creating a New Security Policy (NSM Procedure) on page 34
Assigning a Security Policy in an Intrusion Detection and Prevention Device (NSM
Procedure) on page 117
Modifying IDP Rulebase Rules (NSM Procedure) on page 36
You use the security policy wizard to create a new security policy. The security policies
you create with the wizard must have a new name but can be based on existing policies
or templates.
To create a new security policy:
In the NSM navigation tree, select Policy Manager > Security Policies.
1.
Select File > New Policy to display the New Policy wizard.
2.
On the first page, complete the settings and then click Next. Table 17 on page 34
3.
describes page one fields.
Description
A string to identify the policy.
Text to further identify the policy. In the security policy list, you can sort on comments.
On the second page, complete the settings and then click Next. Table 18 on page 35
4.
describes page two settings.
Copyright © 2010, Juniper Networks, Inc.