CiscoWorks VMS Security Monitor data retention factors
We monitor 15 IPS sensors with CiscoWorks VMS Security Monitor and even though we have tuned some signatures and created some filters a lot of alerts are still produced and populate the database. We currently have around 12 days of retention.
What factors into the number of days worth of events I can view and report on in CiscoWorks Security Monitor Event Viewer:
The number of events received? In other words the more events that are filtered the more days worth of events I can view and report on?
The size of the table in Security Monitor > Admin > Data Management > Database > Pruning Configuration which by default is set at 2,000,000 and if I'm warned of performance degradation if I increase the size?
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...