R3166-R3206-HP High-End Firewalls Attack Protection Configuration Guide-6PW101
29
Intrusion detection statistics
Overview
Intrusion detection is an important network security feature. By analyzing the contents and behaviors of
packets passing by, this feature can determine whether the packets are attack packets and take actions
accordingly as configured. Supported actions include outputting alarm logs, discarding packets, and
updating session status.
The intrusion detection statistics show the counts of attacks as per attack type, and the counts of attack
packets dropped, helping you analyze the intrusion types and quantities present to generate better
network security policies.
NOTE:
For information about packet inspection, see the chapter “Packet inspection configuration.” For
information about traffic abnormality detection, see the chapter “Traffic abnormality detection
configuration.”
Displaying intrusion detection statistics
To view intrusion detection statistics, select Intrusion Detection > Statistics in the navigation tree to enter
the intrusion detection statistics page, as shown in Figure 27. Select a zone to view the counts of attacks
and the co
unts of dropped packets in the security zone. Table 16 desc
ribes the attack types.