07-24-2024 07:56 AM
Hello All,
This question may have already been answered, however I didn't see this question asked specifically in other forums or documentation (I may not have looked well enough). Apologies if this is a duplicate.
I understand the inspection chain on the firepower goes prefilter > security intelligence > ACP. If an IP, URL or domain is added to a do-not-block list in security intelligence, is that item exempt from additional inspection/access control done further down the chain such as ACP rules, file policy and IPS/IDS?
Thanks in advance for any responses!
- Trevor
Solved! Go to Solution.
07-24-2024 07:58 AM
07-24-2024 07:58 AM
No it will continue inspect in snort
MHM
07-24-2024 10:46 AM
Thank you!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide