This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Neil_Davey
Participant
‎2017-09-19 05:35 AM
Jump to solution

R80.10 IPS By Protocol

When using R77.30 I use to have an IPS Profile that only protected the following IPS settings:

Protections, By Protocol, Application Intelligence, Peer to Peer & Malware Traffic Categories.

On a regular basis I would check both of these categories and if any new protections were downloaded, then I would manually enable these protections.

On R80.10, it looks at though this search topology has been removed so I am wondering how I would create a new IPS Profile but only enable these same categories?

Thanks

Capture.PNG
Preview file
32 KB
0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
‎2017-09-22 03:06 AM
In response to Neil_Davey
Jump to solution

In the Threat Prevention profile, you can define specific categories of protections to activate.

View solution in original post

5 Replies
Neil_Davey
Participant
‎2017-09-20 12:40 AM
In response to Tomer_Sole
Jump to solution

Thanks for the link Tomer Sole.

I have tried to create an IPS Profile but get a load of protections enabled that I do not want.

Have you any steps on how to prevent only the specific protections that I used to use under R77.30?

0 Kudos
PhoneBoy
Admin
Admin
‎2017-09-22 03:06 AM
In response to Neil_Davey
Jump to solution

In the Threat Prevention profile, you can define specific categories of protections to activate.

Neil_Davey
Participant
‎2017-09-29 01:40 AM
Jump to solution

Would you know what tag links to each one from R77.30 then as I can't find the eaact one that only enables the ones I want?

Peer to Peer Tag = ?

Malware Traffic Tag = ?

0 Kudos
PhoneBoy
Admin
Admin
‎2017-09-29 08:31 AM
In response to Neil_Davey
Jump to solution

These tags still exist if you're managing pre-R80 gateways.

I don't believe they were propagated forward to R80 because they can be handled by:

  • P2P: Application Control (there's a P2P tag there)
  • Malware: Anti-Bot and/or Anti-Virus.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    li.common.scroll-to.top