FWSM support for Threat Statistics

Unanswered Question
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
mirober2 Wed, 09/22/2010 - 11:20
User Badges:
  • Cisco Employee,

Hi Jefferson,


The FWSM doesn't support threat-detection like the ASA does. You could setup NetFlow on the switch to monitor the VLANs that are attached to the firewall. This would give you insight into the top talkers.


Hope that helps.


-Mike

Magnus Mortensen Wed, 09/22/2010 - 17:06
User Badges:
  • Cisco Employee,

To add on to what Mike said, the reason we do not do the same kind of threat statistics id two fold: the hardware network processors (NPs) are not design for this and the CPU processor on the module is not terribly fast (doesn't need to be, 99% of traffic handled in HW and not on the CPU). Mike is right, do netflow on the chassis. - Magnus

Posted from my mobile device.

Actions

This Discussion

Related Content