IPS/IDS Whitelisting

Solved
Lorenzo1
Conversationalist

IPS/IDS Whitelisting

Hi everyone.

I've followed numerous threads on the subject , but I just wanted to check I've understood the replies correctly.

 

If I have  a cloud based threat & vulnerability scanning solution, it's not possible to white list the IP to allow Port scanning device subnets on the LAN side of an MX?

1 Accepted Solution
Ryan_Miles
Meraki Employee
Meraki Employee

If you have a supported MX model and run 18.2 you could look into using Trusted Traffic Exclusions https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Trusted_Traffic_Exclusio...

Ryan

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.

View solution in original post

3 Replies 3
Ryan_Miles
Meraki Employee
Meraki Employee

If you have a supported MX model and run 18.2 you could look into using Trusted Traffic Exclusions https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Trusted_Traffic_Exclusio...

Ryan

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
RaphaelL
Kind of a big deal
Kind of a big deal

Yes (maybe?) with MX18.200+ and Trusted IP Addresses/Subnets

https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Trusted_Traffic_Exclusio...

 

but.... I wouldn't run that version in production , seems super buggy. Your mileage may vary.

Wifikohai
Comes here often

Hi, 

Does anyone know if I add an Ip addres on Trustestes/network traffic. Traffic on any direction (from and to this host/network) won't be analyzed by the IPS? 

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels