你当前正在访问 Microsoft Azure Global Edition 技术文档网站。如果需要访问由世纪互联运营的 Microsoft Azure 中国技术文档网站，请访问 https://docs.azure.cn。

New-AzFirewallPolicyIntrusionDetection

参考

模块:: Az.Network

创建新的Azure 防火墙策略入侵检测以与防火墙策略相关联

语法

New-AzFirewallPolicyIntrusionDetection
   -Mode <String>
   [-Profile <String>]
   [-SignatureOverride <PSAzureFirewallPolicyIntrusionDetectionSignatureOverride[]>]
   [-BypassTraffic <PSAzureFirewallPolicyIntrusionDetectionBypassTrafficSetting[]>]
   [-PrivateRange <String[]>]
   [-DefaultProfile <IAzureContextContainer>]
   [-WhatIf]
   [-Confirm]
   [<CommonParameters>]

说明

New-AzFirewallPolicyIntrusionDetection cmdlet 创建Azure 防火墙策略入侵检测对象。

示例

示例 1：使用模式创建入侵检测

New-AzFirewallPolicyIntrusionDetection -Mode "Alert"

此示例使用警报（检测）模式创建入侵检测

示例 2：使用签名替代创建入侵检测

$signatureOverride = New-AzFirewallPolicyIntrusionDetectionSignatureOverride -Id "123456798" -Mode "Deny"
New-AzFirewallPolicyIntrusionDetection -Mode "Alert" -SignatureOverride $signatureOverride

此示例创建具有特定签名替代的入侵检测

示例 3：使用绕过流量设置配置的入侵检测创建防火墙策略

$bypass = New-AzFirewallPolicyIntrusionDetectionBypassTraffic -Name "bypass-setting" -Protocol "TCP" -DestinationPort "80" -SourceAddress "10.0.0.0" -DestinationAddress "10.0.0.0"
$intrusionDetection = New-AzFirewallPolicyIntrusionDetection -Mode "Deny" -BypassTraffic $bypass
New-AzFirewallPolicy -Name fp1 -Location "westus2" -ResourceGroupName TestRg -SkuTier "Premium" -IntrusionDetection $intrusionDetection

此示例使用绕过流量设置创建入侵检测

示例 4：使用专用范围设置配置的入侵检测创建防火墙策略

$intrusionDetection = New-AzFirewallPolicyIntrusionDetection -Mode "Deny" -PrivateRange @("167.220.204.0/24", "167.221.205.101/32")
New-AzFirewallPolicy -Name fp1 -Location "westus2" -ResourceGroupName TestRg -SkuTier "Premium" -IntrusionDetection $intrusionDetection

此示例使用绕过流量设置创建入侵检测

示例 5：使用入侵检测配置文件设置创建防火墙策略

$intrusionDetection = New-AzFirewallPolicyIntrusionDetection -Mode "Deny" -Profile �Advanced�
New-AzFirewallPolicy -Name fp1 -Location "westus2" -ResourceGroupName TestRg -SkuTier "Premium" -IntrusionDetection $intrusionDetection

此示例使用警报和拒绝模式和高级签名配置文件创建入侵检测。

参数

-BypassTraffic

要绕过的流量的规则列表。

Type:	PSAzureFirewallPolicyIntrusionDetectionBypassTrafficSetting[]
Position:	Named
Default value:	None
Required:	False
Accept pipeline input:	False
Accept wildcard characters:	False

-Confirm

提示你在运行 cmdlet 之前进行确认。

Type:	SwitchParameter
Aliases:	cf
Position:	Named
Default value:	None
Required:	False
Accept pipeline input:	False
Accept wildcard characters:	False

-DefaultProfile

用于与 Azure 通信的凭据、帐户、租户和订阅。

Type:	IAzureContextContainer
Aliases:	AzContext, AzureRmContext, AzureCredential
Position:	Named
Default value:	None
Required:	False
Accept pipeline input:	False
Accept wildcard characters:	False

-Mode

入侵检测常规状态。

Type:	String
Accepted values:	Off, Alert, Deny
Position:	Named
Default value:	None
Required:	True
Accept pipeline input:	False
Accept wildcard characters:	False

-PrivateRange

IDPS 专用 IP 范围的列表。

Type:	String[]
Position:	Named
Default value:	None
Required:	False
Accept pipeline input:	False
Accept wildcard characters:	False

-Profile

设置 IDPS 签名配置文件。

Type:	String
Accepted values:	Basic, Standard, Advanced
Position:	Named
Default value:	For newly created policy the default IDPS profile is �Standard� and for existing policy without IDPS profile setting, the default is �Advanced�
Required:	False
Accept pipeline input:	False
Accept wildcard characters:	False

-SignatureOverride

特定签名状态的列表。

Type:	PSAzureFirewallPolicyIntrusionDetectionSignatureOverride[]
Position:	Named
Default value:	None
Required:	False
Accept pipeline input:	False
Accept wildcard characters:	False

-WhatIf

显示运行该 cmdlet 时会发生什么情况。 cmdlet 未运行。

Type:	SwitchParameter
Aliases:	wi
Position:	Named
Default value:	None
Required:	False
Accept pipeline input:	False
Accept wildcard characters:	False

输入

None

输出

PSAzureFirewallPolicyIntrusionDetection