In the Administration Console, you can configure Network Threat Protection settings in a policy (Essential Threat Protection → Network Threat Protection).
Network Threat Protection component settings
Setting |
Description |
|---|---|
Enable Network Threat Protection |
This check box enables or disables Network Threat Protection. This check box is cleared by default. |
Action on threat detection |
Actions performed upon detection of network activity that is typical of network attacks.
|
Block attacking devices |
This check box enables or disables the blocking of network activity when a network attack attempt is detected. This check box is selected by default. |
Block the attacking device for (min) |
In this field you can specify the duration an attacking device is blocked in minutes. After the specified time, Kaspersky Industrial CyberSecurity for Linux Nodes allows network activity from this device. Possible values: integers from 1 to 32768. Default value: 60. |
Exclusions |
This group of settings contains the Configure button, which opens the Exclusions window, where you can specify a list of IP addresses. Network attacks from these IP addresses will not be blocked. |