Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
810
Views
0
Helpful
0
Replies

Add an exception IP by rule

johan.lecerf
Level 1
Level 1

‎09-16-2016 08:40 AM - edited ‎03-12-2019 06:08 AM

Hi,

I would like to know if SourceFire has a way to add exceptions to rules for particular source/destination IP addresses.

For exemple :

This rule "OS-OTHER Bash CGI environment variable injection attempt" drops an important number of packets for this ip 10.0.0.1/32 ==> Only generates false positive events just for this IP

For this particular rule, I would like to add an IP exception to stop drop&generate event

Thanks in advance,

Best regards,

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card