You would like to import SNORT rules but to comply with corporate policy you need to test the
conversion prior to import. How can you do this?
A.
Under the IPS tree Protections > By Protocol > IPS Software Blade > Application Intelligence
> SNORT import and select the SNORT import option.
B.
You must manually review each signature.
C.
SnortConvertor update -f <inputfile> –dry-run
D.
Check Point does not support third party signatures.
Testing SNORT Rule Conversion
You can test the conversion before you update the IPS database.
To test the conversion:
SnortConvertor update -f –dry-run