Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?


Create IPS Signature Static Groups

The signature database in Contrail Service Orchestration (CSO) contains predefined intrusion prevention system (IPS) signature static groups that you can use. Users with the tenant administrator role or a custom role with appropriate IPS tasks can also create customized IPS signature static groups from the Create IPS Signature Static Group page. Static groups enable better manageability because you can group different types of signatures into one entity.

To create a customized IPS signature static group:

  1. Select Configuration > IPS > IPS Signatures.

    The IPS Signatures page appears.

  2. Select Create > Static Group.

    The Create IPS Signature Static Group page appears.

  3. Complete the configuration according to the guidelines in Table 1.

    Fields marked with an asterisk (*) are mandatory.

  4. Click OK.

    You are returned to the IPS Signatures page and a message that the static group was successfully created is displayed.

After you create an IPS signature static group, you can use the static group in an IPS or an exempt rule and reference the IPS profile (containing the rule) in a firewall policy that you can then deploy on the device.

Table 1: Create IPS Signature Static Group Settings




Enter a unique name for the IPS signature static group that is a string of alphanumeric characters, colons, periods, dashes, and underscores. No spaces are allowed and the maximum length is 255 characters.


Enter a description for the IPS signature static group; the maximum length is 1024 characters.

Group Members

You can add one or more IPS signatures, static groups, or dynamic groups to be members of the static group that you are creating. In addition, you can delete group members after adding them.


You must add at least one IPS signature, static group, or dynamic group to proceed.

  • To add one or more group members:

    1. Click the add (+) icon.

      The Add IPS Signatures page appears displaying the existing predefined and custom IPS signatures, static groups, and dynamic groups in a table..

    2. Select one or more group members by clicking the check boxes corresponding to the rows.

    3. Click OK.

      You are returned to the previous page and the group members that you added are displayed in the table.

  • To delete one or more group members that you added:

    1. Select the group members that you want do delete and click the delete (trash can) icon.

      A warning message appears asking you to confirm the deletion.

    2. Click Yes.

      The group members are deleted.