Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
7401
Views
10
Helpful
5
Replies

How do you exclude an IP address from Threat Detection in ASA

Go to solution
uhl_frederick
Level 1
Level 1

‎04-14-2009 12:03 PM - edited ‎03-11-2019 08:18 AM

Hello,

I run ping scans on certain subnets that may or may not be conneceted to ports on my ASA. I need to exclude my workstation IP address from being flagged as a threat. Anyone know how to do this?

Thanks

Gene

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
JORGE RODRIGUEZ
Level 10
Level 10

‎04-14-2009 12:42 PM

Gene,

you may try:

e.i, your host IP conducting scans : 20.20.20.20

threat-detection scanning-threat shun except ip-address 20.20.20.20 255.255.255.255

Go over this link

http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/t.html#wp1499634

Jorge Rodriguez

View solution in original post

5 Replies 5

Go to solution
JORGE RODRIGUEZ
Level 10
Level 10

‎04-14-2009 12:42 PM

Gene,

you may try:

e.i, your host IP conducting scans : 20.20.20.20

threat-detection scanning-threat shun except ip-address 20.20.20.20 255.255.255.255

Go over this link

http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/t.html#wp1499634

Jorge Rodriguez

Go to solution
rick11
Level 1
Level 1
In response to JORGE RODRIGUEZ

‎06-18-2018 02:52 AM

Hello,

will the exclusion work even if I don't have enabled the shun option yet?

0 Helpful

Go to solution
Florin Barhala
Level 6
Level 6
In response to JORGE RODRIGUEZ

‎06-18-2018 04:37 AM

Is this Firepower related?
Can I quickly "except a host from Firepower scan" with this command?
0 Helpful

Go to solution
rick11
Level 1
Level 1
In response to Florin Barhala

‎07-31-2018 02:31 AM

It's ASA Threat detection feature

Go to solution
am.
Level 1
Level 1
In response to JORGE RODRIGUEZ

‎05-11-2019 07:31 AM - edited ‎05-11-2019 07:32 AM

How to disable/deleted it?

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card