| Chapter 22 IDP Commands |
| | |
Table 84 Editing/Creating Anomaly Profiles (continued) | | |
COMMAND | DESCRIPTION | |
udp-decoder {truncated-header undersize-len | Sets udp decoder log or alert options. | |
oversize-len} log [alert] | | |
no udp-decoder {truncated-header undersize- | Deactivates udp decoder log options. | |
len oversize-len} log | | |
udp-decoder {truncated-header undersize-len | Sets udp decoder action | |
oversize-len} action {drop reject-sender | | |
reject-receiver reject-both} | | |
no udp-decoder {truncated-header undersize- | Deactivates udp decoder actions. | |
len oversize-len} action | | |
[no] icmp-decoder {truncated-header | Activates or deactivates icmp decoder options | |
truncated-timestamp-header truncated- | | |
address-header} activate | | |
icmp-decoder {truncated-header truncated- | Sets icmp decoder log or alert options. | |
timestamp-header truncated-address-header} | | |
log [alert] | | |
no icmp-decoder {truncated-header | Deactivates icmp decoder log options. | |
truncated-timestamp-header truncated- | | |
address-header} log | | |
icmp-decoder {truncated-header truncated- | Sets icmp decoder action | |
timestamp-header truncated-address-header} | | |
action {drop reject-sender reject- | | |
receiver reject-both}} | | |
no icmp-decoder {truncated-header | Deactivates icmp decoder actions. | |
truncated-timestamp-header truncated- | | |
address-header} action | | |
show idp anomaly profile scan-detection [all | Shows all scan-detection settings of the | |
details] | specified IDP profile. | |
show idp anomaly profile scan-detection {tcp- | Shows selected TCP scan-detection settings | |
portscan tcp-decoy-portscan tcp-portsweep | for the specified IDP profile. | |
tcp-distributed-portscan tcp-filtered-portscan | | |
tcp-filtered-decoy-portscan tcp-filtered- | | |
distributed-portscan tcp-filtered-portsweep} | | |
details | | |
show idp anomaly profile scan-detection {udp- | Shows UDP scan-detection settings for the | |
portscan udp-decoy-portscan udp-portsweep | specified IDP profile. | |
udp-distributed-portscan udp-filtered-portscan | | |
udp-filtered-decoy-portscan | | |
udp-filtered-distributed-portscan udp- | | |
filtered-portsweep} details | | |
show idp anomaly profile scan-detection {ip- | Shows IP scan-detection settings for the | |
protocol-scan ip-decoy-protocol-scan ip- | specified IDP profile. | |
protocol-sweep ip-distributed-protocol-scan | | |
ip-filtered-protocol-scan ip-filtered-decoy- | | |
protocol-scan ip-filtered-distributed- | | |
protocol-scan ip-filtered-protocol-sweep} | | |
details | | |
show idp anomaly profile scan-detection {icmp- | Shows ICMP scan-detection settings for the | |
sweep icmp-filtered-sweep open-port} details | specified IDP profile. | |