1. Manuals
  2. Brands
  3. IBM Manuals
  4. Scanner
  5. Proventia Network Enterprise
  6. User manual

Defining Network Services (Network Services Policy) - IBM Proventia Network Enterprise Scanner User Manual

Hide thumbs
Table of Contents

Advertisement

Chapter 6: Defining Background Scans

Defining Network Services (Network Services Policy)

Introduction
Scope
Default settings
Policy inheritance
and updates
Service definition
Procedure
92
Use the Network Services policy to define service names associated with TCP and UDP
ports. You can modify some properties of a default service in the policy, and you can add
your own customized services to the policy.
The Network Services policy applies to assessment scans that run as either background or
ad hoc scans.
The IBM ISS X-Force defines the default Network Services policy and may update the
policy in an X-Press Update (XPU). The default policy applies to all groups that do not
override it. The service names defined in the policy are referenced as target types in
Enterprise Scanner check definitions. X-Force adds a service name when a new check uses
a service that was not previously defined in the policy.
A Network Services policy, defined in association with a group, overrides the default
definitions for only those services explicitly referenced in the user-defined policy. A user-
defined Network Services policy includes only explicit overrides of inherited service
definitions. This ensures that all groups automatically inherit XPU updates to the default
Network Services policy.
The network services policy includes the following information about each service:
service name
service description
port number
protocol (TCP or UDP)
whether some (or all) instances of the service operate over SSL on this port within
your network
whether to include the port in the service scan
whether you have customized a default service or created a custom service
To configure network services:
1. In the SiteProtector Console, set up a tab to display asset policies. (See page 74.)
2. On the navigation pane, select a group, and then open the Network Services policy for
that group.
3. For default or customized services, you can do the following:
To disable a service definition, clear the Enabled check box for that service.
To change the description of a service, slowly click Description twice to enter edit
mode, and then change the description.
For each service that operates over SSL in at least some part of your network, select
the May use SSL check box for that service.
IBM Internet Security Systems

Advertisement

Table of Contents
loading

Related Manuals for IBM Proventia Network Enterprise Scanner

Related Content for IBM Proventia Network Enterprise Scanner

Table of Contents