Filter
Top Products
SHOW SECURITY_ADVANCED INTRUDER_TABLE
2-387
SHOW
SECURITY_ADVANCED
INTRUDER_TABLE
Use the SHOW SECURITY_ADVANCED INTRUDER_TABLE command to display
information on recent intrusion attempts for Ethernet networks with
CoreBuilder 5000 Ethernet Private Line Cards.
The security intruder table contains a detailed log on the last 100 intrusion
attempts on each secured network. To log intrusion attempts in the security
intruder table, you must:
■
Enable the intruder reporting network parameter
■
Enable per-port intruder checking
■
Enable either source address or source port checking
After intrusion detection is properly configured, the Ethernet Private Line Card
reports intruders to the DMM, which then stores the information in the security
intruder table.
Each table entry contains the MAC address and associated port or group code, the
date and time of the attempted intrusion, the network on which the intrusion
occurred, and the number of the intrusion attempts on the secured network.
The Ethernet Private Line Card does not save intruder table information in
non-volatile RAM (NVRAM).
Format
Example
The following command displays the currently stored Ethernet security intruder
table:
Related Command
CLEAR SECURITY ADVANCED
show security_advanced intruder_table
chronological
port
chronological
Displays the list of intruder attempts from the Intruder table in chronological
order.
port
Displays the list of intruder attempts from the Intruder table by port number.
CB5000> show security_advanced intruder_table port
Port MAC Address Time Stamp Network Attempts Description
----- --------------------------- ------- -------- -----------------
02.03 08-00-2b-00-00-0108FEB95 ETHERNET_7 13 Intruder station
10:04:34 08-00-2b-00-00-01 access
e
port 02.03 13 times...
Port MAC Address Time Stamp Network Attempts Description
----- --------------------------- ------- -------- -----------
02.04 08-00-2b-00-00-0108FEB95 ETHERNET_3 4 Intruder station
09:02:45 08-00-2b-00-00-01 access
e
port 02.04 4 times...