Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

threat-detection on ASA v 8.02

Hello,

I am trying to enable threat detection with scanning-threat shun. The commands took with the config but when I run any nmap scans the ASA does not shun the host. What I am doing wrong?

Thanks,

Curt

4 REPLIES
Cisco Employee

Re: threat-detection on ASA v 8.02

show threat-detection statistics

show threat-detection statistics host

does it show anything ?

can you get me sh run | inc threat ?

Community Member

Re: threat-detection on ASA v 8.02

I have have attached the 3 outputs that you requested. Thanks for taking the time to look at this.

Curt

Cisco Employee

Re: threat-detection on ASA v 8.02

You may need to reconfigure the scan rate for ASA to detect the traffic from scanner..

Community Member

Re: threat-detection on ASA v 8.02

This was the 2nd config. The first one I had set for scanning. I set the 2nd one for ICMP and tried to ping flood it just to see if it would shun me, but it never did.

377
Views
0
Helpful
4
Replies
CreatePlease to create content