cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
553
Views
0
Helpful
2
Replies

Denied Attackers - Maximum?

David Inabinet
Level 1
Level 1

Does anyone know where I can find out the maximum number of denied attackers the ASA-SSM-10 running 6.1(1)E2 can handle? I see where you can set a timeout and total number for the denied hosts and denied network blocks but I haven't been able to find anything for the max number of denied attackers.

I'm am using this for a signature that is sometimes popular on our network and I'm concerned about impacting the performance of my IPS.

Thanks.

2 Replies 2

rhermes
Level 7
Level 7

The default number of blocked hosts is 250. You can see this with a "sh stat net" command. This can be configured from

conf t

service net

general

block-max-entries