You have a customer with a SCADA environmental control devices that is trigged a false-positive OPS alert whenever the device’s Web GUI is accessed. You cannot seem to create a functional custom IPS filter expert this behavior, and it appears that the device is so old that it does HTTPS support. You need to prevent the false posited IPS alert occurring.
In this scenario, which two actions would accomplish this task? (Choose two.)
A . Create a very granular firewall for that device’s IP address which does not perform IPS scanning.
B . Reconfigure the FortiGate to operate in proxy-based inspection mode instead of flow-based.
C . Create a URL filter with the exempt action for that device’s IP address.
D . Change the relevant firewall policies to use SSL certificate-inspection instead of SSL deep-inspection.
Answer: AD
Leave a Reply