AMP update interval

Solved
Charlie
Getting noticed

AMP update interval

Does anybody know if the AMP -Sourcefire SNORT integration is real-time?  I mean will it provide zero day type of response to a malware source?  Maybe better said, is there an update interval set in the AMP integration that gets updates on a schedule?  Or does it constantly pull it down?   TIA

1 Accepted Solution
PhilipDAth
Kind of a big deal
Kind of a big deal

Check this out:

https://documentation.meraki.com/MX-Z/Firewall_and_Traffic_Shaping/Traffic_Shaping_Settings#List_upd...

 

It defaults to "hourly".  You can also change this to "daily" or "weekly".

View solution in original post

3 Replies 3
PhilipDAth
Kind of a big deal
Kind of a big deal

I don't know the answer for sure.  I think it is either hourly or daily.

PhilipDAth
Kind of a big deal
Kind of a big deal

Check this out:

https://documentation.meraki.com/MX-Z/Firewall_and_Traffic_Shaping/Traffic_Shaping_Settings#List_upd...

 

It defaults to "hourly".  You can also change this to "daily" or "weekly".

Charlie
Getting noticed

Thanks I did run across that but initially it looked like a setting for the uplink stats to 8.8.8.8.  But definitely pointed out in the documentation and also when you hover over the (i) icon in the dashboard, I see where it says applies to security updates including Malware.  Thanks PhilipDAth!!

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels