ASA threat-detection details

Unanswered Question
Jul 20th, 2009

I have basic threat detection turned on on a 5520 running 8.0(4) software. This is showing a number of "scanning" attacks. From the "sh threat-detection scanning-threat" command I can see the Targets and Attackers, but I would like more details. In particular I would like to know,

A - The targets attacked by a specific device.

B - The activity an attacker performed to put it on the list, i.e. port scan or IP scan.

Is this possible?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.

Actions

This Discussion