https://community.cisco.com/t5/network-security/cisco-firepower-security-intelligence-question/m-p/5150070#M1114583 <P>No it will continue inspect in snort&nbsp;</P> <P>MHM</P> Wed, 24 Jul 2024 14:58:41 GMT MHM Cisco World 2024-07-24T14:58:41Z https://community.cisco.com/t5/network-security/cisco-firepower-security-intelligence-question/m-p/5150069#M1114582 <P>Hello All,&nbsp;</P><P>This question may have already been answered, however I didn't see this question asked specifically in other forums or documentation (I may not have looked well enough). Apologies if this is a duplicate.&nbsp;</P><P>I understand the inspection chain on the firepower goes prefilter &gt; security intelligence &gt; ACP. If an IP, URL or domain is added to a do-not-block list in security intelligence, is that item exempt from additional inspection/access control done further down the chain such as ACP rules, file policy and IPS/IDS?&nbsp;</P><P>Thanks in advance for any responses!&nbsp;</P><P>- Trevor</P> Wed, 24 Jul 2024 14:56:24 GMT https://community.cisco.com/t5/network-security/cisco-firepower-security-intelligence-question/m-p/5150069#M1114582 tsanford 2024-07-24T14:56:24Z https://community.cisco.com/t5/network-security/cisco-firepower-security-intelligence-question/m-p/5150070#M1114583 <P>No it will continue inspect in snort&nbsp;</P> <P>MHM</P> Wed, 24 Jul 2024 14:58:41 GMT https://community.cisco.com/t5/network-security/cisco-firepower-security-intelligence-question/m-p/5150070#M1114583 MHM Cisco World 2024-07-24T14:58:41Z https://community.cisco.com/t5/network-security/cisco-firepower-security-intelligence-question/m-p/5150180#M1114593 <P>Thank you!&nbsp;</P> Wed, 24 Jul 2024 17:46:46 GMT https://community.cisco.com/t5/network-security/cisco-firepower-security-intelligence-question/m-p/5150180#M1114593 tsanford 2024-07-24T17:46:46Z