- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
03-10-2017 08:31 AM
Hi,
I've made a custum VP and included into my VP group. In security policy I have applied the standard one (NOT my personal VP) to a security policy but when I go in monitor threat I see that matched also the custom VP. Why??
03-13-2017 02:02 AM
a custom vulnerability works pretty much the same way as a custom URL category: it automatically gets added to all Vulnerability profiles.
If you only want a specific profile to enforce upon it, you should set the default action of the custom vulnerability to alert (no action) or allow (no action + no logging) and then manually set an action (drop, reset ,..) in the profile you want to use for enforcement.
03-13-2017 12:37 AM - edited 03-13-2017 12:38 AM
I guess you've set flags for your custom VP in a way that some rule in general (default) protection profile matches them.
03-13-2017 02:02 AM
a custom vulnerability works pretty much the same way as a custom URL category: it automatically gets added to all Vulnerability profiles.
If you only want a specific profile to enforce upon it, you should set the default action of the custom vulnerability to alert (no action) or allow (no action + no logging) and then manually set an action (drop, reset ,..) in the profile you want to use for enforcement.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!