Chapter 4 Zone Configuration
Zone Detection
Note that the Detector enables the use of an asterisk (*) as a wildcard denoting either of the following options:
–All of the Detector’s zones. Issuing detect * means beginning detection for all of the Detector’s zones.
–A wildcard denoting zone names (i.e. OBL*).
2.Choose ENTER.
Guard-Protection Activation Forms
The Detector enables the user to apply different
•Τhe Detector activates the Guard to assume protection over the overall zone whenever a traffic abnormality is detected. This strategy is recommended when the overall zone consists of
•Τhe Detector activates the Guard protection over a particular zone once a traffic abnormality is traced as destined to that particular zone. This is recommended when the overall zone consists of unrelated particular zones. This is since the user may want to assume protection per an attacked zone and not spend valuable protection resources over the overall zone.
•Τhe Detector activates the Guard protection over a specific zone once a traffic abnormality is traced as destined to that specific zone. The Detector would also activate the Guard protection over the overall zone once the detected abnormality cannot be associated with a particular zone. This strategy is recommended when the overall zone consists of highly related particular zones. This is since the user may want to avoid a situation in which a targeted zone may inflict damage on the overall zone.
To activate the
1.From the following sample Zone command group level type the following:
only-dest-ip policy-type}
| Cisco Traffic Anomaly Detector User Guide |
|
