Enabling and disabling additional Intrusion Detection methods

You can enable and disable use of additional Intrusion Detection methods when connected to the Server through a web browser.

Only users with the Administrator role can enable and disable the additional Intrusion Detection methods.

To enable or disable additional Intrusion Detection methods:

  1. Connect to the Kaspersky Industrial CyberSecurity for Networks Server through a web browser using the account credentials of a user with the Administrator role.
  2. Select the Settings section and go to the Technologies tab.
  3. Enable or disable the use of additional Intrusion Detection methods by using the following toggle switches:
    • ARP spoofing detection – enables or disables detection of signs of falsified addresses in ARP packets.
    • TCP protocol anomaly detection – enables or disables TCP protocol anomaly detection.
    • IP protocol anomaly detection – enables or disables IP protocol anomaly detection.
  4. After a method is enabled or disabled, wait for the toggle switch to change to the necessary position (Enabled or Disabled).

    This process takes some time. The toggle switch will be unavailable during this time.

See also:

Enabling and disabling rule-based Intrusion Detection

Changing the state of sets of Intrusion Detection rules

Loading and replacing custom sets of Intrusion Detection rules
Page top