Cisco Systems ASA 5505 Webcam User Manual

Open as PDF

of 754

27-3

Cisco ASA Series Firewall ASDM Configuration Guide

Chapter 27 Configuring Threat Detection

Configuring Basic Threat Detection Statistics

Guidelines and Limitations

This section includes the guidelines and limitations for this feature:

Security Context Guidelines

Supported in single mode only. Multiple mode is not supported.

Firewall Mode Guidelines

Supported in routed and transparent firewall mode.

Types of Traffic Monitored

Only through-the-box traffic is monitored; to-the-box traffic is not included in threat detection.

Default Settings

Basic threat detection statistics are enabled by default.

Table 27-1 lists the default settings. You can view all these default settings using the show

running-config all threat-detection command in Tools > Command Line Interface.

Table 27-1 Basic Threat Detection Default Settings

Packet Drop Reason

Trigger Settings

Average Rate Burst Rate

• DoS attack detected

• Bad packet format

• Connection limits exceeded

• Suspicious ICMP packets

detected

100 drops/sec over the last 600

seconds.

400 drops/sec over the last 20

second period.

80 drops/sec over the last 3600

seconds.

320 drops/sec over the last 120

second period.

Scanning attack detected 5 drops/sec over the last 600

seconds.

10 drops/sec over the last 20

second period.

4 drops/sec over the last 3600

seconds.

8 drops/sec over the last 120

second period.

Incomplete session detected such as

TCP SYN attack detected or no data

UDP session attack detected

(combined)

100 drops/sec over the last 600

seconds.

200 drops/sec over the last 20

second period.

80 drops/sec over the last 3600

seconds.

160 drops/sec over the last 120

second period.

Denial by ACLs 400 drops/sec over the last 600

seconds.

800 drops/sec over the last 20

second period.

320 drops/sec over the last

3600 seconds.

640 drops/sec over the last 120

second period.

• Basic firewall checks failed

• Packets failed application

inspection

400 drops/sec over the last 600

seconds.

1600 drops/sec over the last 20

second period.

320 drops/sec over the last

3600 seconds.

1280 drops/sec over the last 120

second period.

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems ASA 5505 Webcam User Manual