To remove alerts, use the following database commands:
Dismissible alerts
update alert2s set TimeResolved = getdate()
go
update alert2hosts set TimeResolved = getdate()
go
update alert2administrators set TimeResolved = getdate()
go
Indismissible alerts
- For Firewall and Stateful events:
delete from alert2network
go - For alerts assigned to Integrity rules:
delete from alert2integrityrules
go - For alerts assigned to specific Log Inspection rules:
delete from alert2loginspectionrules
go