Cisco Systems OL-6109-01 manual Learning Phase 2 Threshold Tuning

Chapter 4 Zone Configuration

Zone Traffic Learning

Note that the Detector enables the use of an asterisk (*) as a wildcard denoting either of the following options:

–All of the Detector’s zones. Issuing no learning* reject means aborting the learning phase for all of the Detector’s zones.

–A wildcard denoting zone names (i.e. OBL*).

2.Choose ENTER.

Learning Phase 2 – Threshold Tuning

During this stage the Detector constructs its detection policies and begins to tune its traffic type thresholds (see Chapter 7, “Policy Procedures” for further details).

To begin the second Learning phase perform the following:

1.From the Global command group level type the following:

admin@DETECTOR# learning threshold-tuning <zone-name>

Or alternatively:

From the zone command group level type the following:

admin@DETECTOR-conf-zone-<zone-name># learning threshold-tuning

Where zone-namespecifies a zone name.

Note that the Detector enables the use of an asterisk (*) as a wildcard denoting either of the following options:

–All of the Detector’s zones. Issuing learning threshold-tuning*means setting the threshold tuning phase for all of the Detector’s zones.

–A wildcard denoting zone names (i.e. OBL*).

2.Choose ENTER.

Note Cisco Systems recommends letting the Learning Phase 2 - Threshold Tuning continue for 24 hours before concluding.