About tuning parameters

For Network IPS appliances, tuning parameters affect intrusion prevention settings at the group and site levels.

Edit and configure tuning parameters for groups of appliances that are managed through the SiteProtector™ system. View the parameters that affect a specific appliance at the site level with the Network IPS Local Management Interface.

You can tune the following components on a group of appliances:
  • Intrusion prevention responses
  • Intrusion prevention security risks
  • Firewall logging
  • Updates

Default values

Tuning parameters consist of name-value pairs. Each name-value pair has a default value. For example, the parameter np.firewall.log is a parameter that determines whether to log the details of packets that match firewall rules you enabled. The default value for this parameter is on.

The Tuning Parameters page lists the commonly used tuning parameters for the appliance. You can add tuning parameters to the list and to the list of advanced parameters on the Update Settings page. Even if a tuning parameter is not listed on either page or not enabled, its behavior is still controlled by the default values that are defined for it. To change the behavior of a tuning parameter, you must configure it, enable it, and then apply a default value that includes the wanted behavior.

Important: Do not delete any default tuning parameters without prior consent from IBM® Support.