- Bronze, 100 points or more
I have basic threat detection turned on on a 5520 running 8.0(4) software. This is showing a number of "scanning" attacks. From the "sh threat-detection scanning-threat" command I can see the Targets and Attackers, but I would like more details. In particular I would like to know,
A - The targets attacked by a specific device.
B - The activity an attacker performed to put it on the list, i.e. port scan or IP scan.
Is this possible?