After installing the Deep Security Agent and assigning protection to the host, attempts to send malicious traffic to the host are still successful.
This happens even after confirming that the host is configured in DPI mode and has been assigned the correct Security Profile. Furthermore, you have ensured that the protection policy has been pushed to the agent by examining the configuration through the Deep Security Agent GUI.
This issue may happen in very rare occasions wherein there may have been an error when attempting to attach the Deep Security driver to a physical interface.
Without the driver attached to an interface, Deep Security will not analyze the traffic for that interface.
You can do the following to check and ensure that the Deep Security driver is attached to your physical interface:
- Open Windows Control > Network Connections.
- Right-click on the interface in question and then select Properties.
- On the General tab, go to the This connection uses the following items: list box and then tick the Trend Micro LightWeight Filter Driver option.
The Deep Security driver for this device will now be enabled.