1 Reply Latest reply on Sep 19, 2012 9:32 AM by greatscott

    "Treat match as intrusion" and "Log Matching Traffic" Query

    greatscott

      Does anyone know how to create a query to see events, when in the HIPS Firewall, a rule is created, and the checkboxes "Treat match as intrusion" and "Log matching traffic" is set? I want to track this specific traffic via ePO if possible.

       

      Is this even possible?