Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
621
Views
5
Helpful
4
Replies

Filtering only high alerts

Go to solution
5creedus
Level 1
Level 1

‎06-11-2008 09:31 AM - edited ‎03-10-2019 04:08 AM

I have a range of IP's that I never want to see any high priority alerts, but need to see any other alerts. How would I do that?

thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions
4 Replies 4

Go to solution
Farrukh Haroon
VIP Alumni
VIP Alumni

‎06-11-2008 01:16 PM

The best way to control this would be to filter those hosts based on the Risk Rating, using 'Event Action Filters' you can subtract actions from alerts. So for these hosts you could subtract the 'Product Alert' action based on a specific Risk Rating value.

Have a look at:

http://www.cisco.com/en/US/docs/security/ips/6.0/configuration/guide/idm/dmEvtRul.html#wp1034361

Regards

Farrukh

Go to solution
5creedus
Level 1
Level 1
In response to Farrukh Haroon

‎06-11-2008 03:41 PM

thanks, more detailed information on the risk ratings?

0 Helpful

Go to solution
5creedus
Level 1
Level 1
In response to Farrukh Haroon

‎06-12-2008 03:34 PM

Thanks Farrukh

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card