cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
312
Views
0
Helpful
1
Replies

Override manual shun with network object group?

support.c
Beginner
Beginner

Is there a way to override a manual shun with an object group (or otherwise)?

I have found that we can override an "automatic shun" using:

threat-detection scanning-threat shun except object-group no-shun

But, we are needing a way to override a priviledged user typing in:

shun <ip>

Won't get too deep into the unlying reasons for needing this... but, let's just say it's a way to keep legit IP addresses from getting blocked when they are mistaken for malicious IPs.

Any ideas?

1 Reply 1

Maykol Rojas
Cisco Employee
Cisco Employee

Unfortunately there is no way to accomplish this. 

What I would suggest is to use a global ACL and then apply the exceptions there, without using the Shun command. 

 

Mike. 

Mike
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers