Intrusion Prevention Service (IPS) is a fully integrated security subscription for all WatchGuard appliances. It works in tandem with the application layer content inspection of the platform to provide real-time protection against network threats, including spyware, SQL injections, cross-site scripting, and buffer overflows. IPS scans traffic on all major protocols, using continually updated signatures to detect and block all types of threats. And because IPS is integrated with WatchGuard security appliances, you have an easy-to-manage, cost-effective solution without additional hardware to purchase and maintain.
Flexible Administrator Control
Have the flexibility to define the action to be taken when malware is identified – enabling the network to allow, block, or lock questionable traffic based on type, user/group, protocol, and severity.
Comprehensive Threat Signatures
Signatures cover a broad range of threats, including SQL injections, cross-site scripting (XSS), buffer overflows, denial of service, and remote file inclusions.
Continually Updated Database
Signatures are updated without interruption as new threats emerge, so you never have to leave your network exposed.
Highly Effective Scanning
Scans all protocols, including HTTP, HTTPS, FTP, TCP, UDP, DNS, SMTP, and POP3 to block network, application, and protocol-based attacks.
Assign specific actions to take depending on the level of the threat – each signature has a severity assigned.
Automated Source Blocking
IP addresses identified as the source of an attack are automatically blocked to prevent further malicious traffic from entering your network.
Cost Effective Solution
Provide network-wide protection for all users configured behind your WatchGuard firewall with a single IPS subscription.