[Contents] [Prev] [Next] [Index] [Report an Error]

Understanding IDP Policy Rules

Each instruction in an IDP policy is called a rule. Rules are created in rulebases.

Before You Begin
For background information, read: IDP Policies Overview Understanding IDP Policy Rulebases

Before You Begin

For background information, read:

Rulebases are a set of rules that combine to define an IDP policy. Rules provide context to detection mechanisms by specifying which part of the network traffic the IDP system should look in to find attacks. When a rule is matched, it means that an attack has been detected in the network traffic, triggering the action for that rule. The IDP system performs the specified action and protects your network from that attack.

IDP policy rules are made up of the following components:

Match Conditions (see Understanding IDP Rule Match Conditions)
Attack Objects and Groups (see Understanding IDP Rule Objects)
Actions (see Understanding IDP Rule Actions)
IP Actions (see Understanding IDP Rule IP Actions)
Notifications (see Understanding IDP Rule Notifications)

[Contents] [Prev] [Next] [Index] [Report an Error]