Intrusion protection

This section discusses the Security Profiles > Intrusion Protection feature in FortiOS 5.4.

The FortiOS Intrusion Prevention System (IPS) combines signature detection and prevention with low latency and excellent reliability. With intrusion protection, you can create multiple IPS sensors, each containing a complete configuration based on signatures. Then, you can apply any IPS sensor to any security policy.

This section describes how to configure the IPS settings.

If you enable virtual domains (VDOMs) on the FortiGate unit, intrusion prevention, called intrusion protection in the FOS 5.4 GUI, is configured separately for each virtual domain.

This Handbook chapter includes Inside FortiOS: Intrusion Prevention System providing readers an overview of the features and benefits of key FortiOS 5.4 components.

For readers needing to delve into greater detail, we provide the following topics:

• IPS concepts
• Enable IPS scanning
• Configure IPS options
• Enable IPS packet logging
• IPS examples