Configuration: AJSEC Lab7 IPS Rulebase
...
>> Telemetry data / passive monitoring of netflows or DNS queries
>> use of Passive DNS (help identify shadow and phishing domains) with Bind RPZ or OpenDNS
...
IPS Signature: https://www.juniper.net/documentation/en_US/junos/topics/concept/security-ips-signature-database-understanding.html
It contains definitions of different objects, such as
- service contexts objects,
- attack objects,
- application signature objects,
that are used in defining IDP policy rules.
The IPS signature database includes more than 5000 signatures and more than 1200 protocol anomalies.
