IPS - Additional Activation

What can I do here?

Use this window to activate/deactivate client and server protections.

Getting Here - Security Policies > Threat Prevention > Policy > Threat Tools > Profiles > Open Profile > IPS

Additional Activation Fields

For additional granularity, in the Additional Activation section of the Profile configuration window, you can select IPS protections to activate and to deactivate. The IPS protections are arranged into tags (categories) such as Product, Vendor, Threat Year, and others, for the ease of search. The gateways enforce activated protections, and do not enforce deactivated protections, regardless of the general profile protection settings.

Activate IPS protections according to the following additional properties - When selected, the categories configured on this page modify the profile’s IPS protections.
- Protections to activate - The IPS protection categories in this section are enabled on the Security Gateways that use this Threat Prevention profile.
- Protections to deactivate - The IPS protection categories in this section are NOT enabled on the Security Gateways that use this Threat Prevention profile.
These categories only filter out or add protections that comply with the activation mode thresholds (Confidence, Severity, Performance).

For example, if a protection is inactive because of its Performance rating, it is not enabled even if its category is in Protections to activate.