Manage attacks

In any application with Protect enabled, you can take action on attacks while they happen. Contrast keeps attack event data for thirty days.

To manage attacks:

  1. Select Attacks in the header.

  2. To manage a single attack, use the drop-down menu at the end of the attack row. Select the arrow to see options for this attack.

    To manage multiple attacks, select the checkbox for each attack, and select the appropriate icons in the batch action menu above the grid.

  3. Select Blocklist IP if you want to block the IP from future attacks. In the window that appears, add a name and select a time for when you want the IP address block to expire.

  4. Select Suppress if you want to hide an attack from view.

Note

Contrast keeps attack event data for thirty days before removing it. In order to keep attack data: