Hi
I am trying to create a threat prevention policy where traffic from
(DMZ -> Inside networks) and (Inside networks -> DMZ) ----- IPS Profile in Detect mode
(DMZ+Inside -> Internet) and (Internet -> DMZ+Inside) ----- Same IPS Profile in Prevent mode
I can do that using hidden columns of source and destination in Threat Prevention Policy and also creating objects for inside, DMZ and internet (Negated cell of inside networks)
and by also cloning the existing IPS profile and changing all actions to detect mode
but isnt there a better and cleaner way of doing this using scopes and not having to use Source, Destination columns, and also avoid cloning or duplication of Current IPS profile
Thanks
Kind Regards