This topic describes how to exclude network entities from Network Inspection System (NIS) scans. A typical entity that you might want to exclude is a detection IP address, which is an isolated, unprotected IP address used by a firewall administrator to learn about various network attacks.
To exempt network entities from Network Inspection System scans
In the Forefront TMG Management console, in the tree, click the Intrusion Prevention System node.
Click the Network Inspection System (NIS) tab, and on the Tasks tab, click Define Exceptions.
On the Exceptions tab, click Add, and then select the network entities you want to exclude from inspection.
Tip: If you want to remove a network entity from the list, select it, and click Remove.
When finished, on the Apply Changes bar, click Apply.
Copyright © 2009 by Microsoft Corporation. All rights reserved.