Configuring the IDS

Just like any other feature on a router, you must configure IDS services to get IDS functionality. You need to take a number of configuration steps with IDS, and the configuration is going to be unique to your network environment. When we say “your unique network environment,” we are referring to two things. First, all security implementations should be based on a written security policy. Second, not all networks run the same services. Some networks use Apache Web servers, but others might be using Microsoft's Internet Information Server (IIS). There is no reason to analyze packets for IIS attacks if you are running Apache. For performance reasons, you should disable signatures that have no relevance to your network.

It is ...

Get SECUR Exam Cram™ 2 (Exam 642-501) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.