Filter
Top Products
44-14
Cisco ASDM User Guide
OL-16647-01
Chapter 44 Monitoring Properties
IP Audit
• If new entries arrive but there is no room in the cache because the size was exceeded or no more
memory is available, the cache will be thinned by one third, based on the entries age. The oldest
entries will be removed.
Fields
• Host— Shows the DNS name of the host.
• IP Address—Shows the address that resolves to the hostname.
• Permanent—Indicates whether the entry was made though a name command.
• Idle Time—Specifies the time elapsed since the security appliance last referred to that entry.
• Active—Indicates whether the entry has aged out. If there is not adequate space in cache, this entry
may be deleted.
• Clear Cache—Click to clear the entire DNS cache.
Modes
The following table shows the modes in which this feature is available:
IP Audit
The IP Audit pane lets you view the number of packets that match informational and attack signatures
that are shown in graphical or tabular form. Each graph type shows the combined packets for all
interfaces that have this feature enabled.
Fields
• Available Graphs—Lists the types of signatures available for monitoring. See IP Audit Signatures
for detailed information about each signature type. You can choose up to four types of statistics to
show in one graph window. You can open multiple graph windows at the same time.
–
IP Options—Shows the packet count for the following signatures:
Bad Options List (1000)
Timestamp (1002)
Provide s, c, h, tcc (1003)
SATNET ID (1005)
–
IP Route Options—Shows the packet count for the following signatures:
Loose Source Route (1004)
Record Packet Route (1001)
Strict Source Route (1006)
–
IP Attacks—Shows the packet count for the following signatures:
IP Fragment Attack (1100)
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
• • • •—