I have configured the panorama threat alert for one of our firewall and its working fine. Alerts has been configured for High and Critical .
we are getting so many alert from one IP (10.32.100.238) , one of vulnerabilities management device . I want to create a rule so that we can exclude the alerts from the source IP 10.32.100.238 and add it to white-list .
Could you please let me know the “Threat ID” for all those messages. If the destination is one of your security device used for vulnerabilities management, you can make an exception into the “Vulnerability “ profile and set action to “ allow” ( default action would be alert).
Hope this helps.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!