04-14-2009 12:03 PM - edited 03-11-2019 08:18 AM
Hello,
I run ping scans on certain subnets that may or may not be conneceted to ports on my ASA. I need to exclude my workstation IP address from being flagged as a threat. Anyone know how to do this?
Thanks
Gene
Solved! Go to Solution.
04-14-2009 12:42 PM
Gene,
you may try:
e.i, your host IP conducting scans : 20.20.20.20
threat-detection scanning-threat shun except ip-address 20.20.20.20 255.255.255.255
Go over this link
http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/t.html#wp1499634
04-14-2009 12:42 PM
Gene,
you may try:
e.i, your host IP conducting scans : 20.20.20.20
threat-detection scanning-threat shun except ip-address 20.20.20.20 255.255.255.255
Go over this link
http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/t.html#wp1499634
06-18-2018 02:52 AM
Hello,
will the exclusion work even if I don't have enabled the shun option yet?
06-18-2018 04:37 AM
07-31-2018 02:31 AM
05-11-2019 07:31 AM - edited 05-11-2019 07:32 AM
How to disable/deleted it?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide