Using the SmartDefense Wizard

The SmartDefense Wizard allows you to configure your SmartDefense security policy quickly and easily through its user-friendly interface.

Note: The SmartDefense wizard clears any existing SmartDefense settings.

After using the wizard, you can fine tune the policy settings using the SmartDefense tree. See Using the SmartDefense Tree.

To configure the SmartDefense policy using the wizard

Click Security in the main menu, and click the SmartDefense tab.
The SmartDefense page appears.
Click SmartDefense Wizard.
The SmartDefense Wizard opens, with the Step 1: SmartDefense Level dialog box displayed.
Drag the lever to the desired level of SmartDefense enforcement.
For information on the levels, see the following table.
Click Next.
The Step 2: Application Intelligence Server Types dialog box appears.
Select the check boxes next to the types of public servers that are running on your network.
Click Next.
The Step 3: Application Blocking dialog box appears.
Select the check boxes next to the types of applications you want to block from running on your network.
Click Next.
The Step 4: Confirmation dialog box appears.
Click Finish.
Existing SmartDefense settings are cleared, and the security policy is applied.

SmartDefense Security Levels

This level…	Does this…
Minimal	Disables all SmartDefense protections, except those that cannot be disabled.
Normal	Enables the following: Teardrop Ping of Death LAND Packet Sanity Max Ping Size (set to 1500) Welchia Cisco IOS Null Payload IGMP Small PMTU (Log Only) This level blocks the most common attacks.
High	Enables the same protections as Normal level, as well as the following: Host Port Scan Sweep Scan HTTP Header Rejection Strict TCP (Log Only)
Extra Strict	Enables the same protections as High level, as well as the following: Strict TCP (Log + Block) Small PMTU (Log + Block) Max Ping Size (set to 512) Network Quota