HP TippingPoint Next Generation Firewall manual Svc

Attribute

Description

Type

Access

Range

svc.fips-enable

Attribute used to enable/disable SMS FIPS

Bool

read-write

0

mode. In this mode, only FIPS 140-2

approved cryptographic algorithms are

used when allowing SSH connections.

NOTE: FIPS mode cannot be enabled if SSH

has not been enabled. Also, disabling SSH

automatically disables FIPS mode.

Example:

set svc.fips-enable=yes

svc.http-enable

Attribute used to enable/disable the HTTP

Bool

read-write

0

(HTTP protocol) service.

The HTTP service is used to download the

SMS client during the installation process

and download other files. The service is

configured to prevent CGI and other active

server processing. Once the client is

downloaded, the service can be disabled

until an updated client is available. HTTP

and HTTPS can be enabled separately.

To enable HTTP, set the svc.http-enable

attrib to true. To disable, set to false.

Example:

set svc.http-enable=true

svc.https-enable

Attribute used to enable/disable the HTTPS

Bool

read-write

0

(Secure HTTP protocol) service.

The HTTPS service is used to download the

SMS client during the installation process.

The service is configured to prevent CGI

and other active server processing. Once

the client is downloaded, the service can be

disabled until an updated client is available.

To enable HTTPS, set the svc.https-enable

attrib to true. To disable, set to false.

svc.ping-enable

Attribute used to enable/disable incoming

Bool

read-write

0

ping support. Responding to pings can be

considered a security weakness for systems.

When disabled, the SMS will not respond to

ICMP Echo Requests.

Example:

set svc.ping-enable=true