Atm my IPS settings are as follows:
But in log Port scan is still Detect is not Prevent.
Few years ago in Pfseance I drop all port scan. What should I do to drop/prevent in CP.
If you have SmartEvent, you can configure reactions accordingly.
If not, you can always configure a Suspicious Activity Monitoring (SAM) rule. This works by sending an alert to SmartView Monitor.
This is just a heads up... You can search SKs for SAM rules-
Tue 11 Mar 2025 @ 05:00 PM (CDT)
Under the Hood: Configuring Site to Site VPN with Azure Virtual WAN and CloudGuard Network SecurityWed 12 Mar 2025 @ 03:00 PM (CET)
Finance at a Crossroads: Harnessing Generative AI Securely - EMEAWed 12 Mar 2025 @ 06:00 PM (IST)
TechTalk: The Future of Browser Security: AI, Data Leaks & How to Stay ProtectedTue 11 Mar 2025 @ 05:00 PM (CDT)
Under the Hood: Configuring Site to Site VPN with Azure Virtual WAN and CloudGuard Network SecurityWed 12 Mar 2025 @ 03:00 PM (CET)
Finance at a Crossroads: Harnessing Generative AI Securely - EMEAWed 12 Mar 2025 @ 06:00 PM (IST)
TechTalk: The Future of Browser Security: AI, Data Leaks & How to Stay ProtectedTue 25 Mar 2025 @ 09:00 AM (EDT)
Canada In-Person Cloud Security with Hands-On CloudGuard Workshops!
