About aleksta9826435

aleksta9826435 · 04-02-2025

Hi everyone,Having some .CSE rules when high amount of data Is leaving a internal network. Having alot of false positives related to this. And I'm wondering If It's possible in some way to exclude a specifik "Subject Payload" field?That "Subject Payl...

aleksta9826435 · 02-05-2025

Hi allExperiencing Issues with creating Custom Security Events towards NVM (nvzflows) In my SNA platform.Been creating a test Custom Security Event, just to see If it triggers."CSE: Forbidden Application"When any subject host; using the process "well...

aleksta9826435 · 01-29-2025

HelloIs everyone here having experience with the NVM-module, that Is possible to have within the Secure Client?How does SNA handles large amount of NVM-flows? Lets say between 5K -> 10K clients.Ideally Is It worth setting up a dedicated Flow Collecto...

aleksta9826435 · 01-27-2025

Hi everyone,I've a question regarding the "Analytics" function that Is available to enable in the Secure Network Analytics platform, on the Manager.Before enabeling the function Cisco informs about "heavy load", minimum requirements etc etc. But noth...

aleksta9826435 · 02-25-2021

Hi! I have been encountered the following message "Potential CSRF attack detected". I've tried to reconfigure the SAML within the ASA, but It doesn't help. I'm using the AnyConnect software and everything seems to be working fine when I'm authenticat...

aleksta9826435 · 02-06-2025

I'll attach the screenshot below.

aleksta9826435 · 02-06-2025

Okey. So what you are saying Is that It's not possible to create "Custom Security Events" towards NVM telemetry data?My NVM-module configuration Is only for endpoints that are on a "trusted network".I actually got some hits today in my "Security Insi...

aleksta9826435 · 02-05-2025

I'm running the latest version.7.5.1

aleksta9826435 · 01-30-2025

I see. But around 2K Is very very far away from 100.00K hosts that my Flow Collector can inspect/analyze. Seen some weird log messages In my flow collector recently,"flow collector longest export exceeded"Seems like It is related to high volume traff...

aleksta9826435 · 01-29-2025

Sorry, I wrote wrong on the dimensions. I have 400 GB disk allocated.Supports up to 100.000 internal hosts.Is It possible in the UI to see how many internal hosts my SNA monitors? Under "Investigate" -> "Hosts" --> It says a bit 2K hosts.

Member Since	‎02-25-2021 06:17 AM
Date Last Visited	‎04-04-2025 01:02 AM
Posts	13

User Statistics

User Activity

Cisco Secure Network Analytics - .CSE Rule Exclude Payload information

Cisco Secure Network Analytics - Custom Events not working towards NVM

Cisco Secure network Analytics - NVM module

Cisco Secure Network Analytics On-prem deployment - Analytics function

CSCvw59876 - ASA "Potential CSRF attack detected." when SAML assertion validation fails

Re: Cisco Secure Network Analytics - Custom Events not working towards

Re: Cisco Secure Network Analytics - Custom Events not working towards

Re: Cisco Secure Network Analytics - Custom Events not working towards

Re: Cisco Secure network Analytics - NVM module

Re: Cisco Secure network Analytics - NVM module