Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
396
Views
0
Helpful
1
Replies

SigEvent Action Filter

darin.marais
Level 4
Level 4

‎05-04-2006 01:50 AM - edited ‎03-10-2019 03:00 AM

I have created a “SigEvent Action Filter” to filter all TCP syn host sweep (3030) from a single host to a defined variable "set of IP addresses". The filter appears to stop alerting on all of the events except the summarized alerts. These alerts are not filtered.

Is this knowen bug?

Labels:
0 Helpful
1 Reply 1

a.giorgi
Level 1
Level 1

‎05-04-2006 06:52 AM

Hi Darin:

I reproduced a similar scenario with signature 2004 (icmp request) that is sumarized by default and I dont get any event.

Probably is a bug of your version

I'm working with platform IDS-4215

Build version 5.0(1)S149.0

OS version 2.4.26-IDS-smp-bigphys

How about you?

Hope this helps (rate if it does)

Alberto Giorgi from spain

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card