Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ASA 8.0 Threat Detection

Threat detection provides the option to shun addresses once a threat alarm has triggered. What is the shun timeout?

1 REPLY
New Member

Re: ASA 8.0 Threat Detection

I opened a TAC case and got the following information.

1. There is no timer associated with firewall shun or threat detection shun

2. A host stays in the shunned list indefinitely unless one of the following happens:

i) The "clear threat-detection shun" command is executed by the user

ii) The firewall is reloaded/power cycled

358
Views
0
Helpful
1
Replies