Intrusion Detection/Intrusion Prevention System
Left running head:
Chapter name (automatic)
928
Beta Beta
OmniAccess 5740 Unified Services Gateway CLI Configuration Guide
Alcatel-Lucent
T
O CREATE A INTRUSION RULE INSIDE A FIREWALL POLICY
Note: Currently, multiple match-lists cannot be associated to a firewall policy rule. To
configure more than one match-list within a firewall policy, add multiple rules with
different match-lists.
E
XAMPLE
ALU(config)#firewall
ALU(config-firewall)#policy policy1
ALU(config-firewall-policy1)#1 match m1 intrusion sensor1
detection
Command (in F-PCM) Description
[<1-65535>] match [{all|any}]
<match-list name> intrusion
<sensor name>
{detection|prevention [reset]}
Enter this command in the Firewall Policy
Configuration mode.
This command is used to attach an
intrusion sensor to a firewall policy, and
create rules (set priority for the rule,
associate match-lists and action) for a
firewall policy.
This command also sets the action -
detection or prevention for the configured
rule.
The range for the rule number is 1-
65535. This rule number signifies the
priority of a rule. By default, the
numbering pattern for rule number is the
next multiple of ten to the highest existing
rule number.
The keyword “detection” detects the
intrusion, and “prevention” detects and
also prevents the intrusion.
To Next Page
Loading...
