Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
carl_t
Contributor
Jump to solution

Threat Prevention - IPS policy

Hi All

Can anyone clarify for me the below

1.Under the Threat Prevention, I see IPS and threat prevention layers, yet IPS is enabled on the Threat Prevention profile anyway.

Is the IPS layer just there for pre R80 or R77 software from when it was upgraded and is no longer needed?

 

2.Under the Threat prevention rule, if we click on the arrow, we get E-1.1 etc, are these just all the exceptions which also can be accessed under the Exceptions menu also?

 

cheers

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin

If you don’t manage any pre-R80 gateways, you can remove the IPS layer.

The Threat Prevention exceptions may or not be listed as rules in the policy as the policy can be more granular.

View solution in original post

2 Replies
PhoneBoy
Admin
Admin

If you don’t manage any pre-R80 gateways, you can remove the IPS layer.

The Threat Prevention exceptions may or not be listed as rules in the policy as the policy can be more granular.

Timothy_Hall
Legend Legend
Legend

To further expand on what PhoneBoy said, here is the relevant page from my IPS/AV/ABOT video series that fully explains the Legacy IPS layer and how to get rid of it:

IPS_Legacy.png

Gateway Performance Optimization R81.20 Course
now available at maxpowerfirewalls.com
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events