Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
925
Views
2
Helpful
5
Replies

FTD Prevent IP addresses from being shunned

Cory Anderson
Level 1
Level 1

‎01-23-2024 08:37 AM

I have some firewalls running FDM locally and not managed by an FMC that keep shunning specific IP Addresses. How do I configure the FTD to prevent these IP addresses from being shunned like you can in an ASA or with the FMC?

5 Replies 5

MHM Cisco World
VIP
VIP

‎01-23-2024 08:41 AM

Can you more elaborate?

Thanks 

MHM

0 Helpful

Cory Anderson
Level 1
Level 1

‎01-23-2024 09:41 AM

yes, the firewalls have site to site VPNs. After a period of time with high bandwidth utilization, an endpoint will stop forwarding traffic. If I run the command "show threat-detection shun"  it shows that the IP address is shunned. If I clear the shun, it starts forwarding traffic again.  What other information would be helpful?

0 Helpful

MHM Cisco World
VIP
VIP
In response to Cory Anderson

‎01-23-2024 09:50 AM

 

I know for asa we can prevent ASA to shun specific IP (NOTICE that you need to make sure that this IP is not hack or under attack)
https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/113685-asa-threat-detection.html

Screenshot (93).png

for your case you run FTD manage by FDM ?
MHM

0 Helpful

Cory Anderson
Level 1
Level 1

‎01-23-2024 11:55 AM

Yes, managed by FDM and not FMC. I've done this through the ASA but I don't see how to do it with the FDM.

 

MHM Cisco World
VIP
VIP
In response to Cory Anderson

‎01-23-2024 11:57 AM

I will check if we can do it via flexconfig in FDM or not.
I will update you soon 
thanks 
MHM

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card