Configuration guidelines – H3C Technologies H3C SecPath F1000-E User Manual

Page 48

Advertising

Figure 48 Enable IDS collaboration

Configuration guidelines

When you configure IDS collaboration, follow these guidelines:

•

Both the firewall devices and IDS devices must support and have SNMPv2c configured.

•

The aging time for an IDS blocking entry is five minutes. The timer restarts if the firewall receives an
SNMP trap with the same attack information before the timer expires.

•

A blocking entry is effective only to subsequent connections matching this entry. To make entries
apply to the current connections, disable the fast forwarding function of the firewall.

•

Disabling IDS collaboration removes the generated blocking entries from the firewall.

Advertising

This manual is related to the following products:

H3C SecPath F5000-A5 Firewall, H3C SecPath F1000-A-EI, H3C SecPath F1000-E-SI, H3C SecPath F1000-S-AI, H3C SecPath F5000-S Firewall, H3C SecPath F5000-C Firewall, H3C SecPath F100-C-SI, H3C SecPath F1000-C-SI, H3C SecPath F100-A-SI, H3C SecBlade FW Cards, H3C SecBlade FW Enhanced Cards, H3C SecPath U200-A U200-M U200-S, H3C SecPath U200-CA U200-CM U200-CS

Popular Brands

Popular manuals