How can you accomplish this?

SNORT is a popular open source IDS, you would like to import SNORT rules from plain text into
Check Point Smart Center. How can you accomplish this?

SNORT is a popular open source IDS, you would like to import SNORT rules from plain text into
Check Point Smart Center. How can you accomplish this?

A.
Under the IPS tree Protections > By Protocol > IPS Software Blade > Application Intelligence
> SNORT import and select the SNORT import option.

B.
IPS profiles must be manually configured on each gateway.

C.
Check Point does not support third party signatures.

D.
From the command line, run: ips_export_import import <SNORTprofilename> -f <file-name>
[-p <ip>].

Show Hint

Leave a Reply 1

Your email address will not be published. Required fields are marked *

Sidza

Sidza

The IPS SnortConvertor tool converts SNORT rules to Check Point IPS protections. The new IPS
protections are in the IPS tree: Protections > By Protocol > IPS Software Blade > Application
Intelligence > SNORT Imported

Reply