Hi folks,
I tried to modify one of my firewall rules by adding IPS to it and failed. The rule is not using the HTTP proxy or any scanning other than ftp. I tried enabling application control at the same time, that also failed.
I was able to modify rules that already had the IPS enabled at migration time.
Ian
More poking - if I enable https scanning I can then update the rule, then disable https scanning the changes stay.