cancel
Showing results for 
Search instead for 
Did you mean: 
Create a Post

IPS Protection Update

Jump to solution

Can Checkpoint add a new feature that will allow for customers to download custom cve's files from different vendors to match the customers infrastructure and equipment? Currently, Checkpoint pushed new cve's but many of them do not match our needs. is it possible in near future to offer this feature.

 

0 Kudos
1 Solution

Accepted Solutions
Admin
Admin

Re: IPS Protection Update

Jump to solution
By custom CVE, I assume you mean a custom signature to address a specific CVE.
We've allowed customers to import snort signatures for several versions now.
4 Replies
Admin
Admin

Re: IPS Protection Update

Jump to solution
By custom CVE, I assume you mean a custom signature to address a specific CVE.
We've allowed customers to import snort signatures for several versions now.
Highlighted

Re: IPS Protection Update

Jump to solution

I know we can add snort rules but not signatures, do you have any document showing how to import snort signatures into IPS protection.

Thanks

 

0 Kudos
Admin
Admin

Re: IPS Protection Update

Jump to solution
Aren't snort signatures just a series of snort rules?
In any case, this should be covered in the Threat Prevention docs.
For R80.30: https://sc1.checkpoint.com/documents/R80.30/WebAdminGuides/EN/CP_R80.30_ThreatPrevention_AdminGuide/...
0 Kudos

Re: IPS Protection Update

Jump to solution

Gotcha!

0 Kudos