Endpoint Protection

 View Only
  • 1.  What is Intrusion Prevention policy ?

    Posted Aug 12, 2012 02:41 AM

    Hi,

    What is Role of Intrusion Prevention policy in sep.



  • 2.  RE: What is Intrusion Prevention policy ?

    Posted Aug 12, 2012 02:58 AM

    While firewall checks data flow by IP addresses, ports, application etc., IPS checks the contents of one or more data packages. You can detect malware that is coming through legal ways.

    I think it's an excellent idea to implement IPS in most cases. It's a bit prone to false positives, but there are possibilities in the IPS policy to exclude clients or signatures.

    Concerning Windows servers, have a look at this document:

    Best Practices for Installing Symantec Endpoint Protection (SEP) on Windows Servers

    http://www.symantec.com/docs/TECH92440

     

    Check same fourms will be help...

    https://www-secure.symantec.com/connect/forums/role-intrusion-prevention-policy



  • 3.  RE: What is Intrusion Prevention policy ?
    Best Answer

    Broadcom Employee
    Posted Aug 12, 2012 04:24 AM

    Intrusion Prevention System technology significantly increases the level of protection that Symantec Endpoint Security gives to your network. You should always have IPS enabled on your network

     Intrusion Prevention System technology is strong, effective technology that prevents malicious files from getting to your hard drive in the first place

    Unlike antivirus, which looks for known malicious files, IPS scans the network traffic stream in order to find threats using known exploits and attack vectors. IPS does not detect specific files, but rather specific methods that can be used to get malicious files onto your network. This allows IPS to protect against both known and unknown threats, even before antivirus signatures can be created for them.

    check this link

    http://www.symantec.com/business/support/index?page=content&id=TECH95347



  • 4.  RE: What is Intrusion Prevention policy ?

    Posted Aug 12, 2012 06:38 AM

    Thanks all of you :)