Hi,
I was wondering if anyone could explain how a MARS alert can automatically update IPS signatures (within an ASA) to isolate the threat.
This is stated as a feature in the MARS datasheet but the config documentation does not appear to show the process.
Thanks