Add IPS elements

To add IPS engines to the SMC, add a Single IPS element or an IPS Cluster element that stores the configuration information related to the IPS engine.

This procedure covers the basic configuration of IPS engine elements. For complete instructions about configuring IPS engines, see the Forcepoint Next Generation Firewall Product Guide.

For more details about the product and how to configure features, click Help or press F1.

Steps

  1. Select Configuration.
  2. Right-click NGFW Engines and select one of the following:
    • New > IPS > IPS Cluster
    • New > IPS > Single IPS
    The Engine Editor opens.
  3. In the Name field, enter a unique name.
  4. From the Log Server drop-down list, select the Log Server for storing this IPS engine’s logs.

    If no Log Server is selected, the engine does not make any traffic recordings.

  5. (Optional) In the DNS IP Addresses list, add one or more DNS IP addresses.

    These addresses are the IP addresses of the DNS servers that the IPS engine uses to resolve domain names and web filtering categorization services (which are defined as URLs).

    • To enter a single IP address manually, click Add and select IP Address. Enter the IP address in the dialog that opens.
    • To define an IP address by using a network element, click Add and select Network Element. Select a Host or External DNS Server element.
  6. From the Location drop-down list, select the Location to which the IPS belongs.
  7. Click Save.
    Do not close the Engine Editor.