Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
225
Views
0
Helpful
1
Replies

Suggestion for Cisco Threat Response

bfl1
Level 1
Level 1

‎11-04-2003 08:41 PM - edited ‎03-09-2019 05:24 AM

One thing I haven't been able to find in the CTR program is the ability to read a captured packet. I have been chasing a handful of chronic false positives and being able to use etherreal to view the packet has been priceless. Is this capability within CTR? If not, will it be in future releases?

thanks

Labels:
0 Helpful
1 Reply 1

drolemc
Level 6
Level 6

‎11-10-2003 12:56 PM

The entire idea of using 'Threat Response' is to avoid getting boggled down by false positives. The CRT is built to analyse data and bring only actual attcks to your notice. It does not however supress the generation of alarms. More information is available in the whitepaper at http://www.cisco.com/en/US/products/sw/secursw/ps5054/products_white_paper09186a0080148743.shtml

0 Helpful
Customers Also Viewed These Support Documents