I just installed an ASA5510. Cisco is brand new to me, and I'm still struggling with writing rules for the thing.
I have some understanding, having worked previously with an old Livingston firewall. Also read the O'Reilly Firewall book :)
I was looking at the firewall dashboard and it showed Bit Torrent taking up about 40% of the total traffic for the last hour. The ASA5510 dashboard seems to have detected that on it's own, I don't have anything specific written to trap BT.
I'd like to know, is there information I can pull out of the thing? Can I tell which of my internal hosts is generating this traffic without writing a specific trap to log?
And, is there a one-liner I can write under Configuration/Firewall, to block Bit Torrent? It's against a company policy here to be using it anyway.