Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Phuoc_Ngo
New Contributor

IP Exclusion from IPS/IDS

How do we exclude a certain IP from IPS/IDS sensor or rules? Any assistance would be greatly appreciated. Thanks,
3 REPLIES 3
abelio
SuperUser
SuperUser

Add to your sensor one custom override for the same signature/s and define there your exempt IP number/s

regards




/ Abel

regards / Abel
Phuoc_Ngo
New Contributor

Thanks Abel, The problem is what we want to exclude this IP address from all policies. This is our dilemma, since we have individual IPS sensors for each policy.
abelio

another approach: define a new policy for this IP, configure the IPS sensor you need for it, put that specific policy above all policies with similar src/dst and the firewall will take care of that exception executing this policy before the other ones.

regards




/ Abel

regards / Abel
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors