Trend Micro - Securing Your Journey to the Cloud Business
Support
Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Configure IPS Global IP Address Limits and Exceptions via the LSM?

    • Updated:
    • 31 Aug 2017
    • Product/Version:
    • TippingPoint IPS N-series All
    • TippingPoint IPS NX-series All
    • TippingPoint IPS S-series All
    • TippingPoint SecBlade All
    • Platform:
Summary
Limits and exceptions change the way filters are applied based on IP address. For example, you can specify a limit setting so that filters only apply to specific source and destination IP addresses or address ranges. If a filter has both global and filter-level exception settings, the Threat Suppression Engine (TSE) uses the filter-level settings to determine how to apply the filter. You can configure the following limit and exceptions from the LSM:
Details
Public

Filter Exceptions (specific): Allows traffic that would normally trigger a filter to pass between specific addresses or address ranges without triggering the filter. Configured from the Filter Edit page, these exceptions apply only to the filter where they were configured.

Limit Filter to IP Addresses (global): Only apply filters to traffic between specified source and destination IP address pairs. You can configure IP address limits that apply to all the following filter types: Application Protection, Traffic Normalization, and Network Equipment Protection filters. You can configure separate limits that apply only to Performance Protection filters.

Exceptions (global): Exclude traffic between specified source and destination IP address pairs. You can configure exceptions for the following filter types: Application Protection, Traffic Normalization, Network Equipment Protection, and Performance Protection filters. These exceptions are global for all specified filters.

 

How To: Configure Global IP Address Limits and Exceptions

1. From the LSM menu, click IPS > Security Profiles.

2. On the Security Profiles page, click on the name of the security profile that you want to edit.

3. In the Limits/Exceptions section, add IP addresses to Application Protection Filter Exclusives, Application Protection Filter Exceptions, and Performance Protection Filter Exclusives:

    a. Enter the Source Address. Source and Destination IP Addresses can be entered in CIDR format, as "any", or as *.

    b. Enter the Destination Address.

    c. Click Add to table below.

    d. Repeat this process for each IP address exception required.

4. Click Apply.

 

How To: Delete a Global Limit/Exception Setting

1. From the LSM menu, click IPS > Security Profiles.

2. On the Security Profiles page, click on the name of the security profile that you want to edit.

3. In the Limits/Exceptions section, review the global limit and exception address entries.

4. Click Delete to delete an entry.

5. Click Apply.

 

Reference: Local Security Manager User's Guide

Premium
Internal
Rating:
Category:
Configure; Troubleshoot; Deploy
Solution Id:
TP000088494
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.