Idp Rules; Idp Database Updating - D-Link NetDefend DFL-210 User Manual

6.3.3. IDP Rules

D-Link offers two types of IDP:
• Maintenance IDP is a basic IDP system included as standard with the D-Link DFL-
210/800/1600/2500 firewalls. This is a simplfied IDP that gives basic protection against attacks.
It is upgradeable to the professional level Advanced IDP.
• Advanced IDP is a subscription based IDP system with a much broader range of database sig-
natures for professional installations. It is available on all D-Link firewalls. Maintenance IDP
can be viewed as a restricted subset of Advanced IDP and the following sections describe how
the Advanced IDP Service functions.
Subscribing to the D-Link Advanced IDP Service
Advanced IDP is purchased as an additional component to the base NetDefendOS license. It is a
subscription service and the subscription means that the IDP signature database can be downloaded
to a NetDefendOS installation and also that the database is regularly updated with the latest intru-
sion threats. For full details about obtaining the IDP service please refer to Appendix A, Subscribing
to Security Updates.
Figure 6.1. IDP Database Updating
A new, updated signature database is downloaded automatically by NetDefendOS system at a con-
figurable interval. This is done via an HTTP connection to the D-Link server network which deliv-
ers the latest signature database updates. If the server's signature database has a newer version than
the current local database, the new database will be downloaded, replacing the older version.
6.3.3. IDP Rules
IDP, IPS and IDS
The terms Intrusion Detection and Prevention, Intrusion Prevention System and Intru-
sion Detection System are used interchangeably in D-Link literature.
126
Chapter 6. Security Mechanisms