Message Image

Skip main navigation (Press Enter).

Endpoint Protection

View Only

Back to discussions

Expand all | Collapse all

Intrusion Prevention Alert notification Update?

Jump to Best Answer

greengApr 03, 2012 02:35 PM

I was looking for a specific solution and stumbled across this thread which was/is exactly what I'm trying ...

ℬrίαηApr 03, 2012 02:59 PMBest Answer

You can have these alerts sent but they will include both fw and IPS because they are both part of NTP. ...

1. Intrusion Prevention Alert notification Update?

0 Recommend
greeng
Posted Apr 03, 2012 02:35 PM

Reply Reply Privately
I was looking for a specific solution and stumbled across this thread which was/is exactly what I'm trying to accomplish.

https://www-secure.symantec.com/connect/forums/intrusion-prevention-alert-notification#comment-2724221

Is there any update to this? As it specifies in the thread Firewall and IPS are combined in current notification. However it would be nice to have IPS seperate. I'm trying to have a notification sent via email when someone a client detects any P2P traffic.

thanks,
2. RE: Intrusion Prevention Alert notification Update?
Best Answer

0 Recommend
ℬrίαη
Posted Apr 03, 2012 02:59 PM

Reply Reply Privately
You can have these alerts sent but they will include both fw and IPS because they are both part of NTP. I get both all the time (including P2P events)

Monitors >> Notifications >> Notification Conditions

Setup the client security alert notification and edit to the settings you believe will work for you (you will want to select Network Threat Protection events). Set the damper to auto and you will get a hit every time it matches.

Copyright 2019. All rights reserved.

Powered by Higher Logic