Who Me Too'd this topic

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Who Me Too'd this topic

Former Member
Not applicable
Report Inappropriate Content

Setting up an alert for logs coming from a CISCO FW for a traffic combination.

Is it possible to set up an alert for logs coming from a cisco FW to sees the following traffic combination in logging line:

%ASA-6-302013: xxx.73.xxx.64 255.255.255.224 to xx.187.x.194 (Built TCP connection)

%ASA-6-302014: xxx73.xxx.64 255.255.255.224 to xx.187.x.194 (Teardown TCP connection)

%ASA-6-302013: xxx73.xxx.64.255.255.255.224 to xx.187.xx195 (Built TCP connection)

%ASA-6-302014: xxx.73.xxx.64 255.255.255.224 to xx.187.x.195 (Teardown TCP connection)

%ASA-6-302013: 1xx.x1x.39.0 255.255.255.224 to xx.187.x.194 (Built TCP connection)

%ASA-6-302014: xxx.18xx.39.0 255.255.255.224 to xx.187.x.194 (Teardown TCP connection)

%ASA-6-302013: xxx,x.39.0 255.255.255.224  to xx187.x.195 (Built TCP connection)

%ASA-6-302014: 1xx.xxx.3.xx 255.255.255.224 to xxx.187.x.195 (Teardown TCP connection)

Who Me Too'd this topic

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community