Show Posts
1
Intrusion Detection and Prevention / Help setting up Intrusion Detection Policy
« on: March 12, 2021, 03:14:49 pm »
Hi, Can someone please point me to the right direction with setting up a Intrusion Detection Policy for home use?
Im looking at the New Policy creation screen but it has just tons of options and I wasnt able to find any examples of best practises or baselines via Google for this. I dont have any specific needs, just generally want to keep my network safe. Keep away anything unnecessary. Currently I have downloaded and enabled (alert only) a bunch of rulesets that I monitor and selectively drop things "i dont like" but I feel this is not the correct, secure (and optimal) way to do things. Need help with things like which rulesets should I and which should I definately not enable. How should I use the "Rules" filtering/category option?
Hardware wise Im running a 4core Intel J3160 with 4GB of RAM, could upgrade to 8GB if needed.
Im looking at the New Policy creation screen but it has just tons of options and I wasnt able to find any examples of best practises or baselines via Google for this. I dont have any specific needs, just generally want to keep my network safe. Keep away anything unnecessary. Currently I have downloaded and enabled (alert only) a bunch of rulesets that I monitor and selectively drop things "i dont like" but I feel this is not the correct, secure (and optimal) way to do things. Need help with things like which rulesets should I and which should I definately not enable. How should I use the "Rules" filtering/category option?
Hardware wise Im running a 4core Intel J3160 with 4GB of RAM, could upgrade to 8GB if needed.