Configuration guidelines – H3C Technologies H3C SecPath F1000-E User Manual
Page 48
40
Figure 48 Enable IDS collaboration
Configuration guidelines
When you configure IDS collaboration, follow these guidelines:
•
Both the firewall devices and IDS devices must support and have SNMPv2c configured.
•
The aging time for an IDS blocking entry is five minutes. The timer restarts if the firewall receives an
SNMP trap with the same attack information before the timer expires.
•
A blocking entry is effective only to subsequent connections matching this entry. To make entries
apply to the current connections, disable the fast forwarding function of the firewall.
•
Disabling IDS collaboration removes the generated blocking entries from the firewall.
This manual is related to the following products:
- H3C SecPath F5000-A5 Firewall H3C SecPath F1000-A-EI H3C SecPath F1000-E-SI H3C SecPath F1000-S-AI H3C SecPath F5000-S Firewall H3C SecPath F5000-C Firewall H3C SecPath F100-C-SI H3C SecPath F1000-C-SI H3C SecPath F100-A-SI H3C SecBlade FW Cards H3C SecBlade FW Enhanced Cards H3C SecPath U200-A U200-M U200-S H3C SecPath U200-CA U200-CM U200-CS