01-28-2010 09:03 AM
If you're running 3.0 or above, the default actions can be found in the GUI under Objects> Antivirus, Anti-spyware and Vulnerability Protection. To see the information for Antivirus and Anti-spyware, click on New. The default action for Vulnerability Protection can be found by selecting New then Custom from the drop down menu labeled Rule Type. This will bring up the CVE list which contains a column listing the default action.
01-28-2010 09:58 AM
I've done that however, the Custom Vulnerability Protection list is extremely long to go through screen-by-screen. I wanted to see if maybe there was a list PAN compiled that lists the default actions.
Thanks very much.
01-28-2010 10:24 AM
You can do a couple of things to assist in viewing the default actions of IPS signatures in the custom vulnerability protection profile screen. First, you can increase the number of signatures per page to 300. Second, you can filter the list by clicking on 'Show filter' which will allow you to filter down the group of signatures that you would like to look at, based on name, severity, affected host, CVE, etc.
Alfred
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
