The Intrusion Detection System works on a set of given rules. How it makes use of these rules is by checking the data it sees on the network against these rules. If a piece of data matches a set rule it then takes action according to the rule. The rule defines the type of traffic, the priority of the traffic, and sort it into a proper class.
The IDDS then keeps track of all data in detailed logs. These logs
are used to create detailed graphs and reports that are generated
on a daily, weekly and monthly basis. More information concerning
these reports can be found in Section ![[*]](crossref.png)
on page .
To enable a rule check its associated box and vice-versa to disable a rule. To get an explanation of each rule click on the rule itself. A smaller window will appear with a description of the rule and what it does.
When changes have been completed click the Save Changes button.
The IDDS system is now ready to be started. By clicking the Start IDDS option, located at the bottom of the IDDS Management page will start the IDDS. The screen will refresh and there will now be a second option to stop the IDDS. The Intrusion Detection System is now running.