Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

How to exclude an IP (Vulnerability Scanner) from being detected as a port scan

Created: 15 Nov 2013 | 2 comments

Hello All,

We are running a vulnerability scan from the IP "10.150.12.93", however, the endpoint security is detecting this as an attack (port scan). How I can exclude the IP 10.150.12.93 from being detected as an attacker (false positive) since this is something intentional to detect existings vulnerabilities?

 

HowToExcludeAnIpAddress.png

 

Thanks,
Bruno

 

 

Operating Systems:

Comments 2 CommentsJump to latest comment

.Brian's picture

See here

Setting up a list of excluded computers

Article:HOWTO81159  |  Created: 2012-10-24  |  Updated: 2013-10-07  |  Article URL http://www.symantec.com/docs/HOWTO81159

 

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

.Brian's picture

Do you need more assistance with your problem or were you able to get it resolved?

If you could post an update for followers of this thread that would be most helpful.

Otherwise, if resolved, you can close the thread out by clicking the "Mark as solution" link at the bottom left on the most helpful post. If multiple posts helped to solve your problem, please click the "Request split solution" link at the bottom left, select the most helpful posts and click the "Submit" button. This will benefit admins looking for a resolution to the same problem.

Thanks and take care,
Brian

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.