[c-nsp] PIX Detecting Port Scans?
jbruce at unitedscience.com
jbruce at unitedscience.com
Tue Dec 14 12:58:39 EST 2004
Since there has been a few PIX questions lately I thought I would ask
one I have been curious about for a while. Is there a way to configure a
PIX 515 6.3(4) to detect port scans? Here is what I have so far, it only
detects ICMP packets. I'm a newb to the PIX and any links or info would
help. Thanks
ip audit name Inbound-Attack attack action alarm
ip audit name Inbound-Info info action alarm
ip audit interface outside Inbound-Info
ip audit interface outside Inbound-Attack
ip audit info action alarm
ip audit attack action alarm
James Bruce
CONFIDENTIALITY NOTICE
This document(s) and any attachments accompanying this email transmission contain information from United Science Inc, which is confidential and privileged. The email transmission and any attached documents are intended to be for the review and use solely of the individual(s) or entity(ies) named and listed on the email transmission message. If you are not the intended recipient, you are hereby advised that any review, disclosure, copying, distribution or use of the information and/or contents of this email message, as well as any attached documents, is prohibited. If you have received this email message in error, please immediately delete this email transmission and notify us by telephone of this error. Please visit us at http://www.unitedscience.com
More information about the cisco-nsp
mailing list