Forum Discussion
mrunali09_33564
Nimbostratus
NimbostratusHow to monitor ASM logs
I have changed the enforcement mode to Blocking in ASM, what's the next step? How do we monitor the traffic. I see the blocked traffic under event logs but if I have to rollback any of my enforced action to disable how can I do this. How do I monitor legitimate traffic.
Only1masterbla1Cirrus
If ASM blocking is a false positive, you should be able to accept learnt entries and apply policy again.
Simon_BlakelyEmployee
You can use the "Log All Requests" Log Profile on your virtual (under the Security tab).