I'm running an ASA-SSM10 on our ASA5520.
At the moment we are droping packets from few signatures only.
Is there a way to tell the sensor to bypass specific ip's or subnets so they don't get dropped?
When we first installed it and ran it, trusted ip from L2L tunnels were getting dropped, and the only way to fix this was to disabled or reconfigured the signature to not to drop the packets.
Thanks,
Zeek