IPS/IDS Whitelisting

Solved
Lorenzo1
Conversationalist

IPS/IDS Whitelisting

Hi everyone.

I've followed numerous threads on the subject , but I just wanted to check I've understood the replies correctly.

 

If I have  a cloud based threat & vulnerability scanning solution, it's not possible to white list the IP to allow Port scanning device subnets on the LAN side of an MX?

1 Accepted Solution
Ryan_Miles
Meraki Employee
Meraki Employee

If you have a supported MX model and run 18.2 you could look into using Trusted Traffic Exclusions https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Trusted_Traffic_Exclusio...

View solution in original post

3 Replies 3
Ryan_Miles
Meraki Employee
Meraki Employee

If you have a supported MX model and run 18.2 you could look into using Trusted Traffic Exclusions https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Trusted_Traffic_Exclusio...

RaphaelL
Kind of a big deal
Kind of a big deal

Yes (maybe?) with MX18.200+ and Trusted IP Addresses/Subnets

https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Trusted_Traffic_Exclusio...

 

but.... I wouldn't run that version in production , seems super buggy. Your mileage may vary.

Wifikohai
Comes here often

Hi, 

Does anyone know if I add an Ip addres on Trustestes/network traffic. Traffic on any direction (from and to this host/network) won't be analyzed by the IPS? 

Get notified when there are additional replies to this discussion.