Adding an Exempt Rulebase

To add an exempt rulebase :

  1. Select Configure>Security>Policy>IDP Policies.
  2. To add an exempt rulebase for an existing IDP policy, select Rulebase:Exempt and click Add.
  3. To add an exempt rulebase for a new policy:
    • Click Add on the policy task bar.
    • Type a new policy name and select the Activate check box.
    • Select Rulebase:Exempt and Click Add.

    Enter information as specified in Table 40.

  4. Click one of the following buttons:
    • OK—Saves the configuration and returns to the main configuration page.
    • Commit Options>Commit—Commits the configuration and returns to the main configuration page.
    • Cancel—Cancels your entries and returns to the main configuration page.
    • Reset—Resets your entries and returns to update new configuration details.
    • Close—Closes your entries and returns to the main configuration page.

Table 40: Add an Exempt Rulebase Configuration Details

Field

Function

Actions

Basic

Policy Name

Specifies the name of the IDP Policy.

 

Rule Name

Specifies the name of the exempt rulebase rule.

Type a rule name

Rule Description

Specifies the description for the rule.

Type the description for the rule.

Attack Type

Specifies predefined attack objects or attack groups that are used to match the traffic against known attacks.

Select the attack object or attack group from the list and click the right arrow to match an attack object or attack group to the rule.

Category

Specifies the category used for scrutinizing rules to sets.

Select a category from the list.

Severity

Specifies the rule severity levels in logging to support better organization and presentation of log records on the log server.

Select a severity level from the list.

Direction

Specifies the direction of network traffic you want the device to monitor for attacks.

Select a direction level from the list.

Matched

Specifies the type of network traffic you want the device to monitor for attacks.

Select the traffic types and click the right arrow to move them to the matched list.

Match

From Zone

Specifies the match criteria for the source zone for each rule.

Select the match criteria from the list.

To Zone

Specifies the match criteria for the destination zone for each rule.

Select the match criteria from the list.

Source Address

Specifies the zone exceptions for the from-zone and source address for each rule.

Select the from-zone and source addresses/address sets from the list and do one of the following:

  • Click the Match button to match the from-zone and source address/address sets to the rule and click the right arrow.
  • Click the Except button to enable the exception criteria.

Destination Address

Specifies the zone exceptions for the to-zone and destination address for each rule.

Select the to-zone and destination addresses/address sets from the list and do one of the following:

  • Click the Match button to match the to-zone and source address/address sets to the rule and click the right arrow.
  • Click the Except button to enable the exception criteria.