- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-24-2024 07:56 AM
Hello All,
This question may have already been answered, however I didn't see this question asked specifically in other forums or documentation (I may not have looked well enough). Apologies if this is a duplicate.
I understand the inspection chain on the firepower goes prefilter > security intelligence > ACP. If an IP, URL or domain is added to a do-not-block list in security intelligence, is that item exempt from additional inspection/access control done further down the chain such as ACP rules, file policy and IPS/IDS?
Thanks in advance for any responses!
- Trevor
Solved! Go to Solution.
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-24-2024 07:58 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-24-2024 07:58 AM
No it will continue inspect in snort
MHM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-24-2024 10:46 AM
Thank you!
