Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
441
Views
0
Helpful
1
Replies

Attack Risk & Netwoork risk Report FMC

faruqfarkhan
Level 1
Level 1

‎08-04-2024 09:27 PM

Dear ALL,
I want to ask about the cisco FMC report, I'm a little confused in some parts.

faruqfarkhan_0-1722831902411.png

Is the result of this report the result of monitoring the work of the FMC device? I mean is this attacker's IP automatically blocked? do I have to add a layer 3/4 rule for further processing?

faruqfarkhan_1-1722831913779.png

Then for network risk, does anyone have experience regarding what actions I can take based on the results of the network risk report?

Thanks,

0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎08-06-2024 07:15 AM

These reports are more useful as starting points and/or marketing fodder for Cisco to alert you to look into what your devices are configured to do. The reporting in itself does not tell you what your policies do (or don't do). You could have everything running in IDS mode (detect-only) and get the same report as you would when running in IPS (prevention) mode.

0 Helpful
Related community topics
Review Cisco Networking for a $25 gift card
Top