Have the FireEye Snort rules to detect SunBurst IOCs been incorporated into MX Advanced Security IDS/IPS?
Solved! Go to solution.
Hi Graham, look into your Event log on the MX and do a search for update. You’ll see that the snort rules have been updated quite a few times recently
Hi Graham, look into your Event log on the MX and do a search for update. You’ll see that the snort rules have been updated quite a few times recently
Thanks, Darren. I do see daily snort rule updates.
What "event type" do you search for to see this?
Hi @ChesterX , see screenshot
Thank you!