Configuring Additional Intrusion Detection And Prevention Features; Overview; Enabling Intrusion Detection And Prevention Processing Of Encrypted And Encapsulated Traffic (Nsm Procedure) - Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01 Manual

CHAPTER 9
Configuring Additional Intrusion Detection
and Prevention Features
Configuring Additional Intrusion Detection and Prevention Features Overview
Related
Documentation
Enabling Intrusion Detection and Prevention Processing of Encrypted and Encapsulated
Traffic (NSM Procedure)
Copyright © 2010, Juniper Networks, Inc.
Configuring Additional Intrusion Detection and Prevention Features Overview on page 113
Enabling Intrusion Detection and Prevention Processing of Encrypted and Encapsulated
Traffic (NSM Procedure) on page 113
You can configure additional IDP features in NSM, including enabling IDP processing of
encrypted and encapsulated traffic. For more information on configuring the following
features, see the IDP ACM online Help.
Traffic interfaces
IDP in advanced deployment modes
Enable Spanning Tree Protocol
High availability deployments
Interoperability with Secure Access devices and Infranet Controllers
NSM and Intrusion Detection and Prevention Device Management Overview on page 5
Configuring Antispoof Settings in Intrusion Detection and Prevention Devices (NSM
Procedure) on page 85
Enabling Intrusion Detection and Prevention Processing of Encrypted and Encapsulated
Traffic (NSM Procedure) on page 113
You can enable IDP processing of encrypted and encapsulated traffic through NSM.
1. Enabling SSL Decryption on page 114
Enabling GRE Decapsulation on page 114
2.
Enabling GTP Decapsulation on page 115
3.
113