guys,
We've problem with signature IPS in our idsm2, my customer is Banking company,they want to develop
application banking based on ip, the application need to open and allowing port tcp 6070 and 7007
is there any signature ID that's inspect the traffics of application?
the condition idsm2 is bypassing the engine inspection.but it's not the clear solution coz it's make all
traffic is bypass without inspection.
if the engine bypass is auto mode, no one event of ips can hit or show the signature engine,The IPS does not generate alerts, but the application
cannot established, it's always retransmitted if we tap using wireshark.
Need your respond ASAP.because my customer has develop this application in every branch.
Thanks.
Regards,
Rusdi