Using ips sensors in a protection profile, Adding protection profiles to firewall policies – Fortinet Network Device IPS User Manual
Page 14
FortiGate IPS User Guide Version 3.0 MR7
14
01-30007-0080-20080916
Using IPS sensors in a protection profile
IPS overview and general configuration
Using IPS sensors in a protection profile
IPS can be combined with other FortiGate features – antivirus, spam filtering, web
filtering, and web category filtering – to create protection profiles. Protection
profiles are then added to individual user groups and then to firewall policies, or
added directly to firewall policies.
This section describes:
•
Creating a protection profile that uses IPS sensors
•
Adding protection profiles to firewall policies
•
Adding protection profiles to user groups
Creating a protection profile that uses IPS sensors
To create a protection profile using the web-based manager
1
Go to Firewall > Protection Profile.
2
Select Create New.
Figure 2: New Protection Profile
3
Enter a name for the protection profile.
4
Expand the IPS option list.
5
Select an IPS sensor from the dropdown list. For information about IPS sensors,
see
.
6
Configure any other required protection profile options.
7
Select OK.
The protection profile can now be added to any firewall policies that require it. The
protection profile can also be added to user groups and these user groups can be
used to apply authentication to firewall policies.
Adding protection profiles to firewall policies
Adding a protection profile to a firewall policy applies the profile settings, including
IPS, to traffic matching that policy.