McAfee SG310 Administration Manual page 200

Firewall menu options
Intrusion Detection Systems
From the Firewall menu, click Intrusion Detection > UDP tab. The UDP page appears
1
Figure 203 IDB UDP tab
Select an option for the Network Ports scanned list:
2
• Basic – Installs a minimal selection of ports to monitor while still providing sufficient coverage to
detect many intruder scans.
• Standard (default) – Extends the Basic coverage by introducing additional monitored ports for early
detection of intruder scans. The Standard setting includes all of the Basic services.
• Strict – Installs a comprehensive selection of ports to monitor and should be sufficient to detect most
scans. The Strict setting includes all services in Standard and Basic in addition to its own unique
settings.
Security Alert:
running on the UTM Firewall unit (such as telnet) may compromise the security of the device and your
network. McAfee strongly recommends to use only the predefined lists of network ports (Basic, Standard,
Strict).
If you have changed the current configuration, a message informs you custom changes will be lost and
3
prompts you to confirm your selection. Click Apply to accept.
Click Submit.
4
UDP network services
The predefined Basic, Standard, and Strict settings are listed in
included in the setting; an em dash (—) indicates the service is not available in a setting.
Table 17 UDP services settings
Service
BackOrifice
bo2k
discard
echo
entrust-sps
epp-700
filenet-nch
200 McAfee UTM Firewall 4.0.4 Administration Guide
The list of network ports can be freely edited; however, adding network ports used by services
Basic
X
X
X
X
X
X
X
Table
Standard Strict
X X
X X
X X
X X
X X
X X
X X
(Figure
17. An 'X' indicates the service is
203).