Hello,
How do I know if someone has attempted to hack into my ASA from the outside? I understand the firewall drops the traffic if the rules don't apply, but I was wondering if there is a way of logging attempts on any ports on the ASA against the outside interface (so anyone from the internet) to our syslog server then I can generate reports and alerts from there.
We have a number of public IP addresses that the ASA Nat's to various servers can these also be monitored?
What options do I have?
Many thanks in advance for your time spent looking at my issue.
Labels:
- Labels:
- NGFW Firewalls