Basic signature configuration focuses on the following topics:
Signature groups enable you to view Cisco IPS signatures more efficiently, based on the following categories:
After locating signatures by using signature groups, you can then easily perform the following signature operations:
When creating new signatures, you can start with an existing signature by using the Clone option, or you can create a signature from scratch by using the Add option. Retiring signatures enables you to improve performance by removing unneeded signatures from the signature engines. The signatures can be easily activated if they are needed in the future. You can configure one or more of the following signature responses (actions) to be performed when a signature is fired:
|