Manualshelf

TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
511512513514515516517518519520
6-30
Intrusion Detection and Prevention
Configure IDS/IPS
Figure 6-8. Intrusion Prevention > Signatures > Preferences Window
2. Select the Full Session Inspection check box.
3. Click Apply My Changes.
4. Click Save.
Advanced Control of IDS/IPS Inspection. The default optimized session
inspection and the full session inspection will meet the needs of most network
environments. However, if you need more fine-grained control over the IPS
engines inspection depth for a given session, you can use the ips inspection-
depth command. This command must be entered from the TMS zl Module’s
command line interface (CLI).
Because this command affects both performance and security, you should
carefully evaluate both these requirements for your network before you
attempt to customize the IDS/IPS inspection settings. Remember that increas-
ing the depth of the inspection might decrease performance, while decreasing
the depth of the inspection might decrease the module’s ability to protect your
network.
The ips inspection-depth command allows you to configure the number of bytes
that the TMS zl Module will inspect in:
Client-initiated traffic
Server-initiated traffic
For example, if you are concerned that users may inadvertently introduce
threats into your network environment, you may want to set a larger inspec-
tion depth value for client-to-server traffic.
For each type of traffic, you can set the inspection depth from 1 byte to
approximately 2 GB (2147483647 bytes).