Creating an IDS Inspection Rule
The previous commands configured global parameters, but to configured an IDS policy, you must create a named IDS policy. The named IDS policy is then applied to an interface to activate both the global IDS policies and the named IDS policies that you have configured.
The commands for creating a named IDS policy are similar to the commands that you use to create global policies for both information signatures and attack signatures. The only difference with a named policy is that you configure a name that is used with a policy that gets applied to an interface.
The commands to create a named policy for information and attack signatures are
Router(config)# ip audit name audit-name info action [alarm] [drop] [reset] ...Get SECUR Exam Cram™ 2 (Exam 642-501) now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
