Motorola WS-2000-SME-WW CLI Guide - Page 96
Network Firewall IPS set Command
View all Motorola WS-2000-SME-WW manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 96 highlights
3-60 WS2000 Wireless Switch System Reference Guide 3.12.1 Network Firewall IPS set Command set Network Firewall Intrusion Prevention System Commands Sets the Intrusion Prevention System (IPS) parameters. Syntax set [mode|anomaly-config|signature-categories|direction] set mode [enable|disable] set signature-categorises set direction [default|bi-directional] set anomaly-config[-sl |-ml |-md | -hl |-hz |-hlz | -huz ] mode [enable|disable] anomaly-config [-sl | -ml | -md | -hl | -hz | -hlz | -huz ] signature-categories direction [default|bi-directional] Enables or disables IPS. • -sl - Sets the SMTP header length. • -ml - Sets the MIME header length. • -md - Sets the depth of MIME boundary header. • -hl - Sets the field in the HTTP header. • -hz - Sets the HTTP header size. • -hlz - Sets the HTTP header line size. • -huz - Sets the HTTP URI size. Sets the signature categories for IPS. Select from TELNET, POP3, IMAP, NNTP, FTP, SNMP, TCPDNS, UDPDNS, TCPRPC, UDPRPC, HTTP, SMTP, TCPGEN, UDPGEN, ICMP, TCP, UDP, IP. If more than one signature category is specified, separate each category with a space. Each of the signature category must be specified in Upper Case only. Sets the direction to inspect packets. • default - Sets direction as default. This is defined in the signature. • bi-directional - Sets direction as bi-directional. Packets are inspected when received or sent. Example admin(network.fw.ips)>set mode enable admin(network.fw.ips)>set anomaly-config -sl 100 admin(network.fw.ips)>set direction default admin(network.fw.ips)>set signature-categories TELNET POP3 TCP UDP admin(network.fw.ips)>show all IPS mode : enable SMTP Header length : 1024 MIME header length : 1024 Depth of MIME boundary header : 5 Field in HTTP header : 50 HTTP header size : 4096 HTTP header line size : 3072