The intrusion detection and prevention system (IDPS) enables malicious activity within the network to be identified. It focuses on real-time threat detection, logging, and prevention, as well as reporting.
The administrator can also create custom IDPS signatures aimed to protect specific services and include them into IDPS profiles along with UserGate-supplied signatures. IDPS profiles are integrated into firewall rules. When signatures from such a profile are encountered, the action configured for the signatures will be taken, and a corresponding entry will be made in the IDPS Log.