Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
333
Views
0
Helpful
1
Replies

IDS old entries logs

ahpark78
Level 1
Level 1

‎05-25-2006 03:07 AM - edited ‎03-10-2019 03:02 AM

Hi,

I am trying to check back old packets sniffed on 10,11 May 2006 but I do not know where to go to get the old archive logs.

The reason is, the Firewall on another site detected there are 2 PCs trying to scan the whole range of IP addresses. So I am using IDS to check those source entries,packets..

Need your assistance.

thanks..

Labels:
0 Helpful
1 Reply 1

vkapoor5
Level 5
Level 5

‎05-31-2006 05:40 AM

If you are using IEV, you use the "Data Source" option to view the old alrams.

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/csids/csids10/idmiev/swchap6.htm#wp604788

You can specify the dates here.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card