Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
301
Views
5
Helpful
0
Replies

Snort ICMP Connection Test

wechsc7e
Level 1
Level 1

‎09-15-2022 06:45 AM - edited ‎09-15-2022 06:45 AM

Hey all,

This is actually my first post and was looking for some help with my new Snort install on my server.  I am noticing that my logs are becoming inundated with ICMP Connection Tests and am looking for a way to suppress these:

09/15-13:37:57.287526 [**] [1:1000001:1] "ICMP connection test" [**] [Priority: 0] {ICMP}

I went into my snort.lua file to try to suppress these events but I can't find the GID and SID (I tried using 1:1000001:1 as the SID but that didn't work)

Can anyone tell me how to turn these event alerts off?

Thanks

Labels:
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card