Security Services > Intrusion Prevention Service
743
SonicOS Enhanced 4.0 Administrator Guide
information on configuring global signature groups, refer to “Configuring Global Signature
Groups” in the SonicWALL Intrusion Prevention Service Administrator’s Guide available on the
SonicWALL Resource CD or at
<www.sonicwall.com/support/documentation.html>
Note Leaving the High Priority Attacks, Medium Priority Attacks, and Low Priority Attacks
signature groups with no Prevent All action checked means no intrusion prevention is
occurring on the SonicWALL security appliance.
Applying SonicWALL IPS Protection on Zones
You apply SonicWALL IPS to Zones on the Network > Zones page to enforce SonicWALL IPS
not only between each network zone and the WAN, but also between internal zones. For
example, enabling SonicWALL IPS on the LAN zone enforces SonicWALL IPS on all incoming
and outgoing LAN traffic.
In the IPS Status section of the Security Services > Intrusion Prevention Service page, click
the Network > Zones link to access the Network > Zones page. You apply SonicWALL IPS to
a zone listed on the Network > Zones page.
To enable SonicWALL on a zone, perform these steps:
Step 1 In the SonicWALL security appliance management interface, select Network > Zones or from
the IPS Status section, on the Security Services > Intrusion Prevention page, click the
Network > Zones link. The Network > Zones page is displayed.
Step 2 In the Configure column in the Zone Settings table, click the edit icon for the zone you
want to apply SonicWALL IPS. The Edit Zone window is displayed.
Step 3 Click the Enable IPS checkbox. A checkmark appears. To disable SonicWALL IPS, uncheck
the box.
Step 4 Click OK.
You also enable SonicWALL IPS protection for new zones you create on the Network > Zones
page. Clicking the Add button displays the Add Zone window, which includes the same
settings as the Edit Zone window.