Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 8 replies
  • Answers 1 answer
  • Subscribers 4 subscribers
  • Views 6417 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Selective IPS Opt-In

SamFickling

I have been using IPS for some time on my old Astaro 8 firewall, however, I'm about to upgrade to a UTM 9 device and I'm trying to decide how much IPS throughput I'm going to need.

Is there a way to enable IPS for only specified hosts and or services on a specific host as opposed to an entire 'network' or creating 'exceptions'? ie; can I 'opt in' vs 'opt out'?

I note that it is possible to add host objects to the IPS 'Local Networks' configuration, but whether this works the way I expect it to or not is another question.



This thread was automatically locked due to age.
Parents
  • 0

    How many devices do you want to protect simultaneously and what download bandwidth do you want to be able to support?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Well, there are ~20 devices in total, with probably 6 which are exposed to the Internet, and I want to allow for up to 500mbits of total incoming traffic throughput.

    I am aware of the IPS throughput capabilities of the SG range of hardware devices, but my question is more around what my configuration options are as I want the default to be 'bypass IPS' for hosts.

Reply
  • 0 in reply to BAlfson

    Well, there are ~20 devices in total, with probably 6 which are exposed to the Internet, and I want to allow for up to 500mbits of total incoming traffic throughput.

    I am aware of the IPS throughput capabilities of the SG range of hardware devices, but my question is more around what my configuration options are as I want the default to be 'bypass IPS' for hosts.

Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML