Use the User-Defined
Events area of
the Data Loss Prevention page for the Network
IPS appliance to configure up to eight custom signatures that meet
the specific needs of your network. For example, you can create a
signature to recognize the format that you use for account numbers
or policy numbers.
About this task
Navigating
in the Network IPS Local Management Interface:
Navigating in the SiteProtector™ system: select the Data
Loss Prevention policy
Procedure
- Click
the Signatures tab.
- Select
the Content Analysis Enabled check
box.
- In the User-Defined Events area,
click
the Add icon.
- Enable
the event and type a descriptive name for the event
in the Name field.
- Type
an appropriate regular expression in the Expression field.
- Set the Minimum Match (the
minimum
number of matches that are required to cause an event).
- Assign a protection domain by clicking the Add icon.
For more information about configuring protection domains, see Configuring protection domains.
- Click OK.