Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2289
Views
5
Helpful
2
Replies

brute Force attacks detection and prevention using FTD 2100

Ahmed Sabanaa
Level 1
Level 1

‎10-19-2020 06:41 AM - edited ‎10-19-2020 06:41 AM

Dears, 

we need to block http website or application brute force attack using FTD , is it possible ? 

0 Helpful
2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

‎10-19-2020 07:02 AM

Hope below thread able to provide high level what you expect from FP

 

https://community.cisco.com/t5/network-security/firepower-2100-with-asa-software-syn-attack/m-p/4003053

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Mohammed al Baqari
Level 11
Level 11

‎10-19-2020 08:42 AM

Hi,

General answer yes FTD has signatures to block brute force attacks on
supported protocols and supported applications. Having that said, you
shouldn't expect 100% block on any sensor because attackers usually tweak
their attempts algorithm to bypass lockout policies and prevention sensors
using techniques such as spray, etc. You can set your sensor to aggressive
detection but it will generate large false positives.

***** please remember to rate useful posts
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card