Determine which intrusion prevention rules to enable, and select the appropriate action to take, in the event of an attack.