Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

Edit, Clone, and Delete IPS Rules

Edit an IPS Rule

You can edit IPS rules associated only with customized IPS profiles, and not the rules associated with predefined (system-generated) profiles.

To edit an IPS rule:

  1. Select Secure Edge > Security Subscriptions > IPS.

    The IPS Policy page opens.

  2. Click the IPS RULES tab and select the IPS rule.
  3. Click edit (pencil) icon.

    The rule selected for editing is displayed inline at the top of the page.

  4. Modify the rule. See Create IPS Rule.
  5. Click the check mark () to save your changes.

    The changes are saved and a confirmation message is displayed at the top of the page.

    If the IPS belongs to an IPS profile that is referenced in a firewall policy intent, then the firewall policy is marked for deployment. You must deploy the firewall policy for the changes to take effect on the device.

Clone an IPS Rule

Cloning enables you to easily create an IPS rule based on an existing one. You can clone IPS rules associated only with customized IPS profiles, and not rules associated with predefined (system-generated) profiles.

To clone an IPS rule:

  1. Select Secure Edge > Security Subscriptions > IPS.

    The IPS Policy page opens.

  2. Click the IPS RULES tab and select the IPS rule.
  3. Select a rule, and select More > Clone.

    The rule selected for cloning is displayed inline at the top of the page.

  4. Modify the rule. See Create IPS Rule.
  5. Click the check mark () to save your changes.

    The new rule is created and a confirmation message is displayed at the top of the page.

Delete IPS Rules

You can delete IPS rules associated only with customized IPS profiles, and not the rules associated with predefined (system-generated) profiles.

To delete IPS rules:

  1. Select Secure Edge > Security Subscriptions > IPS.

    The IPS Policy page opens.

  2. Click the IPS RULES tab and select the IPS rule.
  3. Select one or more rules, and click the delete (trash can) icon.

    A warning message asking you to confirm the deletion is displayed.

  4. Click Yes.

    A message indicating the status of the delete operation is displayed at the top of the page.

    If the deleted IPS rule belongs to an IPS profile that is referenced in a firewall policy intent, then the firewall policy is marked for deployment. You must deploy the firewall policy for the changes to take effect on the device.