Assess and prioritize your network vulnerabilities, and quickly deploy virtual patch filters for your most at-risk CVE detections.
Intrusion Prevention Configuration centralizes insights from across your network and assesses and prioritizes risk alongside
other XDR sensor data. Intrusion Prevention Configuration provides policy recommendations and enables the deployment of virtual patch filters
to stay
ahead of critical CVEs.
![]() |
NoteIntrusion Prevention Configuration was formerly known as Network Intrusion Prevention - Policy
Recommendations. You can view your connected TippingPoint devices by navigating to
. |
Policy recommendations speed up your response to the most critical CVE threats affecting
your
network through the deployment of available TippingPoint Security Management System
(SMS) virtual
patch filters. You receive a customized display of the most critical CVEs currently
affecting
your network and the virtual patching filter status across your profiles.
To receive vulnerability assessment and prioritization recommendations, and view or
take
immediate action on your top vulnerability threats through use of virtual patching
filter
policies, you must enable Attack Surface Risk Management data
sharing after connecting your TippingPoint SMS to Trend Vision One.
![]() |
Important
|
The following table outlines the options available on the Policy
Recommendations tab (
).
Option
|
Description
|
Vulnerability Overview
|
Displays the current vulnerability status for your most at-risk unique CVEs that have
corresponding TippingPoint filters available for virtual patching
|
Prioritized CVE threat list
|
Displays a prioritized list of CVEs and the filters available that you can enable
and
deploy to profiles to virtually patch existing threats
|
Policy deployment status
|
Displays the current progress of your policy deployment operations
|