Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
421
Views
0
Helpful
1
Replies

Easy way to view shunning event

loverbey
Cisco Employee
Cisco Employee

‎04-29-2005 11:21 AM - edited ‎03-10-2019 01:25 AM

I'd like to know if there is an easy way to view events that caused the IDS to shun a host.

I understand there is Event Viewer standalone, with VMS and IDM. However, with event viewer, it is difficult to view (search) a specific event that occurred in the past.

Is there another way to show the hostname, IDS action taken AND the trigger?

Thanks,

Larissa

Labels:
0 Helpful
1 Reply 1

a-vazquez
Level 6
Level 6

‎05-05-2005 07:55 AM

You can use Cisco Info Center - Security Monitoring to view IDS Shun events.

http://www.cisco.com/univercd/cc/td/doc/product/rtrmgmt/info_ctr/cic_sm36/admin/use_unix.htm

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card