Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
391
Views
0
Helpful
1
Replies

ids event viewer alarm

a.carnevali
Level 1
Level 1

‎10-03-2005 04:08 AM - edited ‎03-10-2019 01:40 AM

I've many alarms with more than one signature with destination ip address 0.0.0.0 source and destination port 0

how can I intend these messages?

Labels:
0 Helpful
1 Reply 1

owillins
Level 6
Level 6

‎10-07-2005 06:32 AM

Begin by defining an exclusive filter. Specify the source address, which is the network that is generating large numbers of false positives. Specify all signatures so that no alarms are sent to Security Monitor. Next, define an inclusive filter. Specify the same source address but specify Signatures which are the ones that you want to include.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card