Profiles are a collection of filters or rules that provide a method for setting up
security configuration options for TippingPoint products. The SMS
ships with a default inspection profile along with a standard Digital Vaccine filter package that addresses known security issues.
As you create, import, and customize filter settings and shared settings,
the SMS monitors the changes to the profile. The profile acts as a package that
encapsulates all filter setting modifications. Every time you distribute updates,
you
must distribute the profile. You can selectively determine what filter settings
and
updates to distribute by creating and maintaining multiple profiles. Each profile
can be
distributed separately to specific devices. When you distribute a profile, you
also
distribute shared settings, such as action sets, notification contacts, and services.
When devising your network security using the TippingPoint system, you should plan to create profiles based on your security
needs. For example, you can create custom filter settings or exceptions for profiles
to
protect external and internal services. In addition, you might have different models
of
inspection devices in a sector of your network. You should consider these options
and
the architecture of devices and related versions as you create, configure, customize,
and update profiles on the SMS.
Profiles provide three different levels of security protection:
- Enterprise-wide - These settings affect all devices and segments on your network. Examples of enterprise-wide security include shared settings and security filter exceptions or restrictions. Digital Vaccine, Threat DV, and Digital Vaccine Toolkit packages also fall under this type of protection, as you can distribute these packages to all of your devices.
- Device-wide - These settings affect all of the segments on a particular device. Digital Vaccine, Threat DV, and Digital Vaccine Toolkit packages also fall under this type of protection, as you can distribute these packages to individual devices.
- Segmental - These settings affect only a particular segment or segment group.