Cisco PIX 500 Series Configuration Manual page 439
Security appliance command line
Hide thumbs
Also See for PIX 500 Series:
- Administration manual (653 pages) ,
- Quick start manual (72 pages) ,
- User manual (60 pages)
Table of Contents
Advertisement
Chapter 23
Preventing Network Attacks
The rate-1 keyword shows the statistics for the smallest fixed rate intervals available in the display;
rate-2 shows the next largest rate interval; and rate-3, if you have three intervals defined, shows the
largest rate interval. For example, the display shows statistics for the last 1 hour, 8 hours, and 24
hours. If you set the rate-1 keyword, the security appliance shows only the 1 hour time interval.
•
To view statistics for all hosts or for a specific host or subnet, enter the following command:
hostname# show threat-detection statistics [min-display-rate min_display_rate ] host
[ ip_address [ mask ]]
To view statistics for all ports or for a specific port or range of ports, enter the following command:
•
hostname# show threat-detection statistics [min-display-rate min_display_rate ] port
[ start_port [- end_port ]]
To view statistics for all IP protocols or for a specific protocol, enter the following command:
•
hostname# show threat-detection statistics [min-display-rate min_display_rate ]
protocol [ protocol_number | ah | eigrp | esp | gre | icmp | igmp | igrp | ip | ipinip
| ipsec | nos | ospf | pcp | pim | pptp | snp | tcp | udp]
where the protocol_number argument is an integer between 0 and 255.
The following is sample output from the show threat-detection statistics host command:
hostname# show threat-detection statistics host
Host:10.0.0.1: tot-ses:289235 act-ses:22571 fw-drop:0 insp-drop:0 null-ses:21438 bad-acc:0
1-hour Sent byte:
8-hour Sent byte:
24-hour Sent byte:
1-hour Sent pkts:
8-hour Sent pkts:
24-hour Sent pkts:
20-min Sent drop:
1-hour Sent drop:
1-hour Recv byte:
8-hour Recv byte:
24-hour Recv byte:
1-hour Recv pkts:
8-hour Recv pkts:
24-hour Recv pkts:
20-min Recv drop:
1-hour Recv drop:
Host:10.0.0.0: tot-ses:1 act-ses:0 fw-drop:0 insp-drop:0 null-ses:0 bad-acc:0
1-hour Sent byte:
8-hour Sent byte:
24-hour Sent byte:
1-hour Sent pkts:
8-hour Sent pkts:
24-hour Sent pkts:
20-min Sent drop:
1-hour Sent drop:
1-hour Recv byte:
8-hour Recv byte:
24-hour Recv byte:
1-hour Recv pkts:
Table 23-3
OL-12172-03
Average(eps)
shows each field description.
Current(eps) Trigger
2938
0
367
0
122
0
28
0
3
0
1
0
9
0
3
0
2697
0
337
0
112
0
29
0
3
0
1
0
42
0
14
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
Cisco Security Appliance Command Line Configuration Guide
Configuring Threat Detection
Total events
0
10580308
0
10580308
0
10580308
0
104043
0
104043
0
104043
1
10851
1
10851
0
9712670
0
9712670
0
9712670
0
104846
0
104846
0
104846
3
50567
1
50567
0
614
0
614
0
614
0
6
0
6
0
6
0
4
0
4
0
706
0
706
0
706
0
7
23-9
Advertisement
Table of Contents
Troubleshooting
