Support

Support for business applications

Kaspersky Industrial CyberSecurity for Networks

Administration of Kaspersky Industrial CyberSecurity for Networks

Configuring Intrusion Detection

Loading and replacing user-defined sets of Intrusion Detection rules

Kaspersky Industrial CyberSecurity for Networks
Нет результатов
Online Help
FAQ Download Forum Contact support Recovery tools Product videos

Loading and replacing user-defined sets of Intrusion Detection rules

March 22, 2024

ID 137924

Get as PDF

You can load sets of Intrusion Detection rules from files into the application. Files containing descriptions of Intrusion Detection rules must be in the same folder and have the rules extension before you can load them into the application. The names of the files must not contain the following characters: \ / : * ? , " < > |.

After loading Intrusion Detection rules from a file, the rules are saved in the application as a user-defined rule set. The name of a rule set matches the name of the file from which this rule set was loaded.

When sets of rules are loaded from files, the current user-defined rule sets are deleted from the table and replaced with the new ones. However, system sets of rules (whose Origin column shows the System value) are not deleted from the table.

Only users with the Administrator role can load user-defined sets of Intrusion Detection rules.

To load and replace user-defined sets of Intrusion Detection rules:

  1. Connect to the Kaspersky Industrial CyberSecurity for Networks Server through the web interface using the Administrator account.
  2. Select the Intrusion Detection section.
  3. Click the Replace user-defined rules link in the toolbar to open the window for selecting the folder containing Intrusion Detection rule files.
  4. When the prompt window appears, click OK.
  5. In the standard window of the browser you are using, select the folder containing the necessary files and click the button for transferring files from this folder.

    The table containing sets of rules displays the new user-defined sets of rules. For these sets of rules, the Origin column will show the User value. All sets of rules that have no detected errors will be enabled.

  6. Check for errors in rules within the loaded sets of rules.

    Information about detected errors is displayed in the Rules column. The OK status is displayed if there are no errors. If the set of rules contains errors, you can view detailed information about them by clicking the Details link.

  7. If necessary, change the state of rule sets (including rule sets that have the Errors in some rules status).

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.