Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 40 subscribers
  • Views 1535 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Help with IPS

itguy318

I am having the following notification on my XG. This is under intrusion detection. I havent done much on IPS and my default policy is LAN to WAN. What is the best way to avoid these intrusions.

 



This thread was automatically locked due to age.
Parents
  • 0

    I have found the best way to avoid these is reviewing legacy or outdated software, i.e. Wordperfect, old Office, old Adobe, etc. These are generally not false positives, but warnings related to potential vulnerabilities of other systems that may be in your inventory.

    It is important to tailor the rules to your environment, rather than rely on canned ones, if you really don't want to see a few of these cropping up.

Reply
  • 0

    I have found the best way to avoid these is reviewing legacy or outdated software, i.e. Wordperfect, old Office, old Adobe, etc. These are generally not false positives, but warnings related to potential vulnerabilities of other systems that may be in your inventory.

    It is important to tailor the rules to your environment, rather than rely on canned ones, if you really don't want to see a few of these cropping up.

Children
No Data
Unfiltered HTML