We are interested in being able to execute a shun command on our ASA firewalls based on a syslog message. The syslog message will include the IP that we would like to shun. Is this possible using the syslog collector that comes with NCM? I see that I can set up an alert action based on a syslog that will run an external command. Could I possibly use this to do something with configmgmtjob.exe? I don't see any documentation for command line usage of this.
Thanks.
