Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

threat-detection configuration on ASA5520 Version 8.2(1)

Hi,

I want to get statistics about how often I am under attacks and the nature of the attacks.

I read many documents about how to activate threat-detection in ASA v8. For this, I need to type the following command: threat-detection basic-threat. Unfortunately I don't have this command and I don't have "show threat-detection statistics port/protocols" either.

The only available commands are: "threat-detection statistics tcp-intercept ...".

I am in a ASA5520 in version 8.2(1) in configure terminal.

Do you have any Idea why these commands are not available?

Many thanks!

3 REPLIES
Cisco Employee

Re: threat-detection configuration on ASA5520 Version 8.2(1)

According to command reference link for 8.2.x, the command does exist.

http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/t.html#wp1508750

Also  shows you what is default.

-KS

Community Member

Re: threat-detection configuration on ASA5520 Version 8.2(1)

Thanks for your reply. Unfortunately I already saw this documentation.

As I said these commands should be available but for any reason, I don't know why they don't appear.

Here you can see that I have only the threat-detection statistics command available:

SPGLO0001FW/BACK(config)# threat-detection ?


configure mode commands/options:
  statistics  Keyword to configure statistics of threat detection

What could be the reason? Is a license needed?

If it helps, below the show version result:


SPGLO0001FW/BACK# sh ver

Cisco Adaptive Security Appliance Software Version 8.2(1)
Detected an old ASDM version.
You will need to upgrade it before using ASDM.

Compiled on Tue 05-May-09 22:45 by builders

SPGLO0001FW up 28 days 1 hour
failover cluster up 28 days 1 hour

Hardware:   ASA5520

Licensed features for this user context:
Failover                     : Active/Active
VPN-DES                      : Enabled
VPN-3DES-AES                 : Enabled
GTP/GPRS                     : Disabled
Botnet Traffic Filter        : Disabled

Cisco Employee

Re: threat-detection configuration on ASA5520 Version 8.2(1)

Is this multiple context?

If so it is not supported.

It says that in the table in that link that I posted previously.

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/contexts.html#wp1116132

-KS

728
Views
0
Helpful
3
Replies
CreatePlease to create content