Overview
Since the DOS/Resource Protection settings do not generate logs by design, it is difficult from the GUI to figure out the DOS functionality.
Issue
Under DoS Protection, for Resources Protection, the firewall tracks the sessions through its session table. Unfortunately, the details of which source/destination is triggering the DoS resource protection threshold cannot be obtained as these are not logged currently.
Resolution
There are ways to verify functionality via the CLI through the Global Counters:
> show counter global | match dos
> debug dataplane show dos classification-table
> show counter global filter aspect dos
> show counter global filter aspect dos delta yes (only shows the difference since last execution)
Owner:- ppatel