https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-policy-on-internal-traffic/m-p/90008#M56455 <P>You need to have topology properly defined and then in profile's AV settings there is an option to choose which traffic to inspect.&nbsp;</P> Mon, 29 Jun 2020 03:49:11 GMT HristoGrigorov 2020-06-29T03:49:11Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-policy-on-internal-traffic/m-p/89994#M56453 <P>Hello,</P><P>Does threat policy which has ips,antobot and antivirus blades apply to exterbal traffic only or internal traffic also ?</P><P>Does it apply to both internal and external traffic automatically aur any configuration is requires</P><P>&nbsp;</P><P>Thanks</P> Sun, 28 Jun 2020 15:28:31 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-policy-on-internal-traffic/m-p/89994#M56453 LostBoY 2020-06-28T15:28:31Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-policy-on-internal-traffic/m-p/89997#M56454 Your precise threat policy determines what protections are applied when.<BR />Anti-Bot in general only applies to the Internet as that’s where the related threats are.<BR />IPS and AV can potentially apply to internal traffic also. Sun, 28 Jun 2020 21:44:53 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-policy-on-internal-traffic/m-p/89997#M56454 PhoneBoy 2020-06-28T21:44:53Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-policy-on-internal-traffic/m-p/90008#M56455 <P>You need to have topology properly defined and then in profile's AV settings there is an option to choose which traffic to inspect.&nbsp;</P> Mon, 29 Jun 2020 03:49:11 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-policy-on-internal-traffic/m-p/90008#M56455 HristoGrigorov 2020-06-29T03:49:11Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-policy-on-internal-traffic/m-p/90046#M56456 Thanks for the reply... i found that section in the AV section ..however can i enable such setting for IPS as well ? Mon, 29 Jun 2020 10:33:28 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-policy-on-internal-traffic/m-p/90046#M56456 LostBoY 2020-06-29T10:33:28Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-policy-on-internal-traffic/m-p/90048#M56457 Thanks for the reply...i found the section in AV tab where i can define whether i want to inspect AV on DMZ/External or all interfaces.. however i cant see any such setting for IPS ..is it implied that IPS automatically inspects all interface traffic ? Mon, 29 Jun 2020 10:34:49 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-policy-on-internal-traffic/m-p/90048#M56457 LostBoY 2020-06-29T10:34:49Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-policy-on-internal-traffic/m-p/90120#M56458 This should happen for IPS unless your precise Threat Prevention policy layer(s) say otherwise. Tue, 30 Jun 2020 00:27:35 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Threat-policy-on-internal-traffic/m-p/90120#M56458 PhoneBoy 2020-06-30T00:27:35Z