Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
900
Views
0
Helpful
1
Replies

Trust host in Sourcefire IPS

Go to solution
duyennv10
Level 1
Level 1

‎06-03-2017 02:45 AM - edited ‎03-10-2019 06:51 AM

We have deployed sourcefire 7125 with defence center 1500 recently.

We get alot of alert through email about 10.1.1.10 with port 445, 10.1.1.10 is our share file server so that is normal to open that port in the server.

How could we classify that 10.0.0.0/8 is allowed connect to 10.1.1.10:445 and wont get email alert any more.

Thank you!

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎06-03-2017 08:49 AM

Create a new rule in your Access Control Policy with those addresses in it and action "Trust". Make sure it is above any more general rules. Save and deploy.

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎06-03-2017 08:49 AM

Create a new rule in your Access Control Policy with those addresses in it and action "Trust". Make sure it is above any more general rules. Save and deploy.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card