I'm trying to enter an IP based exception for a Nexpose scanner, so that regular internal scans don't trigger the attack filters.
I've entered and exception on the 'SMS in Profiles--IPS Profiles--Master Profile--Profile Settings--Application and Infrastructure Tab', with the IP of the Nexpose Scanner as the source address and ANY as the destination address.
The profile has been successfully applied to the TippingPoint devices, but I'm still seeing the attack filters triggering when I run a Nexpose scan.
Is there somewhere else that the IP address needs to be added in order to not have the filters fire on the Nexpose scans, or does the exception need to be "Locked"?
Thanks in advance,
SMS 3.6.0.31698.2
TOS 3.6.1.4036
#TippingPoint#SMS#ip#exception