Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Syslog message




[ Scanning] drop rate-1 exceeded. Current burst rate is 4 per second, max configured rate is 10; Current average rate is 7 per second, max configured rate is 5; Cumulative total count is 4424

Hi team,


I am using cisco ASA 5540.I have monitored my firewall through ASDM. In syslog message, I am getting the above mentioned message. So I want to remove the particular syslog message. How I remove above syslog message? what is purpose of getting this message?


Thanks and Regards,

Mohamed kabeer




  • Firewalling

Hi Kabeer, You would have

Hi Kabeer,


You would have enabled threat detection in your cisco asa if am not wrong. You can disable threat detection to avoid this message in syslog.




New Member

Hi Karthik, Thanks for your

Hi Karthik,


Thanks for your response.


How I disable the threat detection in ASA. Can you please mention the CLI cmd? If I disable the syslog message. It will anything.


Thanks and Regards,

Mohamed kabeer.s

Hi, no threat-detection <your



no threat-detection <your settings> what you have set in your firewall. This error you get because of many reasons.


or else you can disable the specific message as said by jouni to stop receiving such logs in to syslog.


so either you can tweak your configs or remove the threat-detection or that log message... option is yours....

Refer the below mentioned forum and cisco link for more idea....,d.aWw




Super Bronze

Hi, The message you have



The message you have copied does not include the Syslog ID number for the message but it seems to me that it is 733100


You can disable the log message ID with the following command


logging message 733100


To my understanding the purpose of this message is to tell you that there is traffic destined through the ASA that is blocked and rate at which this traffic is blocked has gone over a specified treshold and therefore reported with a log message.


You can view the Cisco document related to this log message in the following page:


Hope this helps :)


- Jouni