Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

Edit, Clone, and Delete IPS or Exempt Rules

You can edit, clone, or delete IPS or exempt rules.

Edit IPS or Exempt Rules

You can edit IPS and exempt rules associated only with customized IPS profiles and not rules associated with predefined (system-generated) profiles.

To edit an IPS or an exempt rule:

  1. Select Configuration > IPS > IPS Profiles.

    The IPS Profiles page appears.

  2. Click IPS-Profile-Name for the profile for which you want to edit a rule.

    The IPS-Profile-Name / Rules page appears.

  3. Mouse over the Details field, then mouse over the ellipsis (...) that appears, and from the menu, select Edit.

    The rule that you selected for editing appears inline at the top of the page.

  4. Modify the rule as needed. See Create IPS or Exempt Rules.
    Note:

    You can modify all fields except the name.

  5. Click Save to save your changes.

    The changes are saved and a confirmation message appears at the top of the page.

If the IPS or exempt rule belongs to an IPS profile that is referenced in a firewall policy intent, then the firewall policy is marked for deployment. You must deploy the firewall policy for the changes to take effect on the device.

Clone IPS or Exempt Rules

Cloning enables you to easily create a new IPS or exempt rule based on an existing one. You can clone IPS and exempt rules associated only with customized IPS profiles and not rules associated with predefined (system-generated) profiles.

To clone an IPS or an exempt rule:

  1. Select Configuration > IPS > IPS Profiles.

    The IPS Profiles page appears.

  2. Click IPS-Profile-Name for the profile for which you want to clone a rule.

    The IPS-Profile-Name / Rules page appears.

  3. Select a rule and select More > Clone. Alternatively, Mouse over the Details field, then mouse over the ellipsis (...) that appears, and from the menu, select Clone..

    The rule that you selected for cloning appears inline at the top of the page.

  4. Modify the rule as needed. See Create IPS or Exempt Rules.
  5. Click Save to save your changes.

    The new rule is created and a confirmation message appears at the top of the page.

Delete IPS or Exempt Rules

You can delete IPS and exempt rules associated only with customized IPS profiles and not rules associated with predefined (system-generated) profiles.

To delete one or more IPS or exempt rules:

  1. Select Configuration > IPS > IPS Profiles.

    The IPS Profiles page appears.

  2. Click IPS-Profile-Name for the profile for which you want to delete one or more rules.

    The IPS-Profile-Name / Rules page appears.

  3. Select one or more rules and click the delete (trash can) icon

    A warning message appears asking you to confirm the deletion.

  4. Click Yes to proceed with the deletion.

    A message indicating the status of the delete operation appears at the top of the page.

If the IPS or exempt rule that you deleted belongs to an IPS profile that is referenced in a firewall policy intent, then the firewall policy is marked for deployment. You must deploy the firewall policy for the changes to take effect on the device.

Related Documentation