The page has been translated by Gen AI.
Overview
Service Overview
IPS(Intrusion Prevention System) continuously updates IPS intrusion detection policies reflecting the latest security threats to respond in real time. Additionally, packet monitoring detects up to the application layer.
Features
- Latest Attack Type Detection: Generate detection patterns for new threats and improve detection rates through continuous signature management. Apply the TI DB of a security specialist company and our own advanced detection policies, and provide services by correlating attack patterns detected by IPS with patterns configured in SIEM(Security Information and Event Management) through correlation analysis.
- Cloud Optimized Operations: We provide detection services optimized for cloud environments. When a security threat occurs, we respond promptly with specialized security personnel.
- Efficient response and support: Monthly reports are provided so you can review the details of events.
Configuration diagram
The public IPS service does not provide monitoring (Security Center).
Provided features
We provide the following features.
- Intrusion Detection and Analysis
- In-depth analysis using raw data
- Update new threat detection patterns incorporating external trend information
- Periodic detection pattern optimization
- Monitoring Information Provision
- Monthly report provision
- Intrusion Response
- Provide IP information of attack attempts targeting SCP client servers
Component
- IPS provides services based on public IPs configured within the VPC.
- We provide services for servers that are accessible over the Internet, and when a user requests a service, we refer to the server (Virtual Server) specifications listed in the service application form.
Constraints
IPS provides detection for traffic that is not encrypted with HTTP. It does not provide monitoring for HTTS SSL encrypted traffic.
The public IPS service does not provide monitoring (Security Center).
Provision status by region
IPS is available in the environments below.
| Region | General (Enter) | Public |
|---|---|---|
| Korea West (kr-west1) | Provided | Not provided |
| Korea East (kr-east1) | Not provided | Not provided |
| South Korea South 1 (kr-south1) | Not provided | Provided |
| South Korea South 2 (kr-south2) | Not provided | Provided |
| South Korea South 3 (kr-south3) | Not provided | Provided |
Table. IPS provision status by region
Preceding Service
- This is a list of services that must be pre-configured before creating an IPS service. Refer to the guides provided for each service and prepare them in advance.
- When creating a VPC Internet Gateway, you must select SIGW (Secure Internet Gateway) in Category to be able to use IPS.
Caution
- When creating a VPC Internet Gateway, if you select Internet Gateway in the ‘Category’, you cannot use the IPS service.
- If you switch to Secure Internet Gateway, you need to change the public IP you are using.
| Service Category | Service | Detailed description |
|---|---|---|
| Networking | VPC | A service that provides an isolated virtual network in a cloud environment |
Table. IPS pre-service