Feature Request - Ability to ignore certain addresses from triggering alert

[BenUhlig]

We have a few systems (Zabbix, Tenable.SC, etc. that will scan the network and I see those triggering alerts. Is there a way to configure this to ignore these known systems so it does not trigger an alert?

TIA

[bhdresh]

Yes, it is possible,

1) To filter the search : Apply filter as below from Threat Analysis -> Active Attacks -> Search Filter

2) To filter the notification : Apply filter as below from Threat Analysis -> Manage Notifications -> New Alert

[BenUhlig]

Thank you... this makes sense now. I appreciate the info!