Filter in/out flows that have a destination interface of 0
Hi,
It would be useful if we could filter in or out flows that have a destination interface of zero (i.e., traffic aimed at the router itself, or traffic dropped by an ACL).
From a security perspective, being able to filter out all flows dropped by an ACL means that all you're left looking at is traffic forwarded by the router. Seeing traffic that was dropped by an ACL might lead you to investigate something that never happened!
Likewise, looking at traffic that was dropped by an ACL (destination interface of zero) would give you a picture of attempted intrusions.
thanks a lot,
alec
It would be useful if we could filter in or out flows that have a destination interface of zero (i.e., traffic aimed at the router itself, or traffic dropped by an ACL).
From a security perspective, being able to filter out all flows dropped by an ACL means that all you're left looking at is traffic forwarded by the router. Seeing traffic that was dropped by an ACL might lead you to investigate something that never happened!
Likewise, looking at traffic that was dropped by an ACL (destination interface of zero) would give you a picture of attempted intrusions.
thanks a lot,
alec
New to M365 Manager Plus?
New to M365 Manager Plus?
New to RecoveryManager Plus?
New to RecoveryManager Plus?
New to Exchange Reporter Plus?
New to Exchange Reporter Plus?
New to SharePoint Manager Plus?
New to SharePoint Manager Plus?
New to ADManager Plus?