Enable ASL Network Firewall IPS

[faris]

What does "Enable ASL Network Firewall IPS" do?
The default is apparently "yes".

I searched the Wiki and the forum, but couldn't find anything as there were too many matches that were unrelated. I have a feeling I might even have asked this before (embarrassed).

[mikeshinn]

What does "Enable ASL Network Firewall IPS" do?
The default is apparently "yes".

It protects against attacks that either need to done down at layer 3, or in cases where application firewalls are either too late or simply are impractical for the protocol. As we add new capabilities we'll update the wiki on this feature to tell you what we've added.

I searched the Wiki and the forum, but couldn't find anything as there were too many matches that were unrelated. I have a feeling I might even have asked this before (embarrassed).

My bad, I forgot to add that to the wiki. Added now:

https://www.atomicorp.com/wiki/index.ph ... all#FW_IPS

Also contains a link to the page that contains a broader explanation for the system:

https://www.atomicorp.com/wiki/index.ph ... ion_System

[faris]

Thanks.

btw, the WiKi says default = no which is different to what it says in the GUI.

Related: Is there a way to test for IPS support? We use Virtuozzo, and not all netfilter modules are supported.

[mikeshinn]

The kernel has to support the u32 and strings modules. So if virtuzzo doesnt have those loaded then the IPS wont enable.