Was it mean that a icmp packet source from 10.10.212.30 to 10.10.212.14 being denied in the FWSM in the first statement? it suppose to be on a same subnet (10.10.212.0/24), not sure why it being detected and logged in the FWSM gateway
I have surf some info from the Internet, in the CISCO FWSM log documentation mention this code of log message can typically be ignored, it's recommend to prevent this system log message from getting logged to the syslog server by entering the "no logging message 106011" command. But I have read also this log could be generated by various worms or trojans attempting to connect to known hosts, it may also indicate a port scaning
Could someone explain to me what actually mean by the message log ? what is the best way to investigte this log, shoud I drill down focus and check on the host machine itself or can ignored this system log ?
On December 8, FireEye reported that it had been compromised in a sophisticated supply chain attack: more specifically through the SolarWinds Orion IT monitoring and management software. The attackers leveraged business software updates in order to distr...
ISE Node TerminologyISE DeploymentsISE Deployment Scale and LimitsISE Hardware PlatformsISE PSN PerformanceISE TrustSec ScalingISE Storage RequirementsISE ERS ScaleISE WAN Bandwidth CalculatorSources
About this Document
Cisco Secure Endpoint (for...