07-15-2019 02:49 PM
We are trying to exempt our ASV scanner IPs from vuln protection, AV, etc... without whitelisting them from the firewall (host/port) rules we have in place. All I can find is exempting IPs based on a single Threat ID.
PCI Scanning Standard:
"13. Arrangements must be made to configure the intrusion detection
system/intrusion prevention system (IDS/IPS) to accept the originating IP
address of the ASV. If this is not possible, the scan should be originated
in a location that prevents IDS/IPS interference "