Configuring IDP Security Module Settings in ScreenOS Overview

The IDP SM and sensor settings specify how the security module(s) on the ISG Series devices and IDP sensors handle traffic. When you add IDP, default values for all security module parameters are used. For more information, see the Configuring Intrusion Detection and Prevention Devices Guide.

This chapter includes the following topics:

Load-Time Parameters

Load-time parameters include options for tuning IDP performance. In general, you modify these settings only if you encounter performance issues. These options control the security module functions when it first powers on. On devices running ScreenOS 6.3, you can make two CPUs share a policy. Eventually, the memory usage increases while the attacks database grows.

Run-Time Parameters

Run-time parameters include options for tuning IDP detection methods. In general, you modify these settings only if you encounter false positives or performance issues. These options control the security module operations.

Protocol Thresholds and Configuration

The protocol anomaly detection methods identify traffic that deviates from RFC specifications. In general, you modify protocol thresholds and configuration settings only if you encounter false positives or performance issues.

Related Documentation