Endpoint Protection

 View Only
Back to discussions
Expand all | Collapse all

Network Intrusion Prevention

  • 1.  Network Intrusion Prevention

    Posted Mar 01, 2012 09:13 AM

    Hi

     

    Is Network Intrusion Prevention is included in default IPS or we need to install SNAC for this..

    Currently we have full featues for client firewall and IPS, etc.. we have enable the Network Intrusion Prevention  option in IPS policy , but when see the sep client report Network Intrusion Prevention is not enabled...

    Please someone clarify on this ?

     



  • 2.  RE: Network Intrusion Prevention

    Broadcom Employee
    Posted Mar 01, 2012 09:27 AM

    it is included by default, no need to install SNAC.

    Is the IPS policy applied to the group? is the policy enabled?



  • 3.  RE: Network Intrusion Prevention

    Posted Mar 01, 2012 09:55 AM

    SNAC = Symantec Network Access Control

    How to add or remove features to existing Symantec Endpoint Protection (SEP) client installations

    http://www.symantec.com/business/support/index?page=content&id=TECH90936

    Best Practices for employing Intrusion Prevention System (IPS) to high-availability/high bandwidth servers.

    http://www.symantec.com/business/support/index?page=content&id=TECH162135

    Best practices regarding Intrusion Prevention System technology

    http://www.symantec.com/business/support/index?page=content&id=TECH95347



  • 4.  RE: Network Intrusion Prevention

    Posted Mar 01, 2012 11:42 AM

    We just cross check with 11.0.6 and 12.1 IPS policy,to enable  Network Intrusion Prevention option is not available in 11.0.6 IPS policy whereas in 12.1 we have option to enable the Network Intrusion Prevention.

    So that we are confused,, In 11.0.6 client Network Intrusion Prevention feature is installed by default or not..

     

    We have enable the IPS policy for clients..



  • 5.  RE: Network Intrusion Prevention

    Posted Mar 01, 2012 02:34 PM

    Just check in SEPM that Intrusion Prevention policy is applied to all the clients..

    What is the version of SEP 12.1 you are using ..try SEP 12.1 Ru1



  • 6.  RE: Network Intrusion Prevention

    Posted Mar 02, 2012 03:24 PM

    IPS policy is applied to all the clients.. we are SEPM 12.1RU1 and for clients we are using 11.0.6300.803



  • 7.  RE: Network Intrusion Prevention

    Broadcom Employee
    Posted Mar 02, 2012 11:15 PM

    are the policies inherited from parent group, is it disabled at the praent?



  • 8.  RE: Network Intrusion Prevention

    Posted Mar 02, 2012 11:43 PM

    inherited from parent group is disabled.. we have created non-shared policy for clients groups..



  • 9.  RE: Network Intrusion Prevention

    Broadcom Employee
    Posted Mar 03, 2012 12:28 AM

    is it possible to post the screen capture?



  • 10.  RE: Network Intrusion Prevention

    Posted Mar 06, 2012 08:48 AM

    PFA screen shot..



  • 11.  RE: Network Intrusion Prevention

    Broadcom Employee
    Posted Mar 06, 2012 08:59 AM

    the option shows the 'Desktop New IPS policy'. can you please explain where does it show is it disabled?



  • 12.  RE: Network Intrusion Prevention

    Posted Mar 06, 2012 09:07 AM

    IPS Policy is not disbaled.. when we generate the client status report Network Intrusion Prevention is disabled for 11.0.6 clients. whereas for 12.1 client Network Intrusion Prevention   is enabled.

    My concern is why Network Intrusion Prevention  is not installed in 11.0.6 clients?

    Same IPS policy is applied for both 12.1 and 11.0.6 clients..