Idp database updating – D-Link DFL-2500 User Manual

DFL-210/800/1600/2500 firewalls. This is a simplfied IDP that gives basic protection against
attacks. It is upgradeable to the professional level Advanced IDP.

•

Advanced IDP is a subscription based IDP system with a much broader range of database
signatures for professional installations. It is available on all D-Link firewalls. Maintenance IDP
can be viewed as a restricted subset of Advanced IDP and the following sections describe how
the Advanced IDP Service functions.

Subscribing to the D-Link Advanced IDP Service

Advanced IDP is purchased as an additional component to the base NetDefendOS license. It is a
subscription service and the subscription means that the IDP signature database can be downloaded
to a NetDefendOS installation and also that the database is regularly updated with the latest
intrusion threats. For full details about obtaining the IDP service please refer to Appendix A,
Subscribing to Security Updates.

Figure 6.3. IDP Database Updating

A new, updated signature database is downloaded automatically by NetDefendOS system at a
configurable interval. This is done via an HTTP connection to the D-Link server network which
delivers the latest signature database updates. If the server's signature database has a newer version
than the current local database, the new database will be downloaded, replacing the older version.

IDP, IPS and IDS

The terms Intrusion Detection and Prevention, Intrusion Prevention System and
Intrusion Detection System are used interchangeably in D-Link literature.

Setting the Correct System Time

It is important that a NetDefendOS has the correct system time set if the auto-update feature in the
IDP module can function correctly. An incorrect time can mean the auto-updating is disabled.

6.5.2. IDP Availability in D-Link
Models

Chapter 6. Security Mechanisms

189