Yeah, I think these would definitely be some helpful improvements in regard to managing the alerts. In a similar vein, I always thought this feature request was a decent idea as well: IDS/IPS automatically block attempting IP after X number of alerts
1 Like