Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

Network Intrusion Prevention

Created: 01 Mar 2012 | 11 comments

Hi

 

Is Network Intrusion Prevention is included in default IPS or we need to install SNAC for this..

Currently we have full featues for client firewall and IPS, etc.. we have enable the Network Intrusion Prevention  option in IPS policy , but when see the sep client report Network Intrusion Prevention is not enabled...

Please someone clarify on this ?

 

Comments 11 CommentsJump to latest comment

pete_4u2002's picture

it is included by default, no need to install SNAC.

Is the IPS policy applied to the group? is the policy enabled?

Simpson Homer's picture

SNAC = Symantec Network Access Control

How to add or remove features to existing Symantec Endpoint Protection (SEP) client installations

http://www.symantec.com/business/support/index?page=content&id=TECH90936

Best Practices for employing Intrusion Prevention System (IPS) to high-availability/high bandwidth servers.

http://www.symantec.com/business/support/index?page=content&id=TECH162135

Best practices regarding Intrusion Prevention System technology

http://www.symantec.com/business/support/index?page=content&id=TECH95347

San1985's picture

We just cross check with 11.0.6 and 12.1 IPS policy,to enable  Network Intrusion Prevention option is not available in 11.0.6 IPS policy whereas in 12.1 we have option to enable the Network Intrusion Prevention.

So that we are confused,, In 11.0.6 client Network Intrusion Prevention feature is installed by default or not..

 

We have enable the IPS policy for clients..

Vikram Kumar-SAV to SEP's picture

Just check in SEPM that Intrusion Prevention policy is applied to all the clients..

What is the version of SEP 12.1 you are using ..try SEP 12.1 Ru1

Vikram Kumar

Symantec Consultant

The most helpful part of entire Symantec connect is the Search button..do use it.

San1985's picture

IPS policy is applied to all the clients.. we are SEPM 12.1RU1 and for clients we are using 11.0.6300.803

pete_4u2002's picture

are the policies inherited from parent group, is it disabled at the praent?

San1985's picture

inherited from parent group is disabled.. we have created non-shared policy for clients groups..

pete_4u2002's picture

the option shows the 'Desktop New IPS policy'. can you please explain where does it show is it disabled?

San1985's picture

IPS Policy is not disbaled.. when we generate the client status report Network Intrusion Prevention is disabled for 11.0.6 clients. whereas for 12.1 client Network Intrusion Prevention   is enabled.

My concern is why Network Intrusion Prevention  is not installed in 11.0.6 clients?

Same IPS policy is applied for both 12.1 and 11.0.6 clients..