Our Nessus scanner is getting blocked (see below) by Exploit prevention even after creating an exclusion rule for the ip-address. any thoughts how I resolved the issue?
==================================================
Analyzer Detection Method:Exploit Prevention
Threat Name: ExP:NIPS Violation
Analyzer Rule Name:SMB Brute Force Attack
Description:ExP:NIPS Violation Blocked a Network exploit attempt.
Attack Vector Type:Network
Threat Source IP address: xx.xxx.xxx.xx
===================================================
Solved! Go to Solution.
Thanks for the updates. I ended up putting all entries under one rule and it seems to work. Previously I had them in 2 separate rules.
agree....it doesn't work when you create multiple rules for the same signature.
Thanks
Corporate Headquarters
6220 America Center Drive
San Jose, CA 95002 USA