Real-Time Alerts and Audit Trails
Alerts identify suspicious activities such as protocol violation, DoS attack, and so on. Alerts is on by default, and the alerts are by default sent to the console. If syslog is configured, alerts can also be sent to a syslog server.
The following commands can be used to turn off the global alert and can be turned on/off per protocol basis.
ip inspect alert-off
ip inspect nameprotocol [alert <on | off>]
Note that alert configuration per protocol configuration gets higher priority than the global alert. Global alert configuration is on by default, so if you want to turn off alert configuration for a specific protocol, you need to execute the second line shown in the previous code sample. Example 5-7 shows the alerts of various protocols: