Security Policy Actions- Vulnerability

Reply
Highlighted
L3 Networker

Security Policy Actions- Vulnerability

Dear All,
 
Kindly help me understand below query - 
 
We would like to configure Security Policy Action "Block IP" for Critical, High and Medium level Vulnerability signatures for 3600 sec. As per understanding traffic from source-destination pair; Configurable for a 3600 seconds (period of time) will be blocked.
 
However request you to clarify whether traffic will be Allow or dropped on first attempt or detection of Vulnerability (Critical, High and medium) signature.
 
Please clarify.
 
Thanks in advance
Highlighted
Cyber Elite

Hello,

Once it is discovered, it will be blocked going forward for 3600 seconds.

 

Hope that helps.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!