/TYPE=keyword

    Selects the type of information from the intrusion database that
    is displayed. The valid keywords are as follows:

    ALL        All entries. By default, all entries are displayed.

    SUSPECT    Entries for login failures that have occurred but have
               not yet passed the threshold necessary to be identified
               as intruders.

    INTRUDER   Entries for which the login failure rate was high
               enough to warrant evasive action.