Support User Manuals

Cisco Systems IPS 7.1 Home Security System User Manual

Open as PDF

of 1042

7-38

Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1

OL-19892-01

Chapter 7 Configuring Event Action Rules

Configuring the Denied Attackers List

Step 8 Enter yes to clear the list.

Step 9 Verify that you have cleared the list. You can use the show statistics denied-attackers or show statistics

virtual-sensor command.

sensor# show statistics denied-attackers

Denied Attackers and hit count for each.

Denied Attackers and hit count for each.

Statistics for Virtual Sensor vs0

Denied Attackers with percent denied and hit count for each.

Denied Attackers with percent denied and hit count for each.

Statistics for Virtual Sensor vs1

Denied Attackers with percent denied and hit count for each.

Denied Attackers with percent denied and hit count for each.

sensor#

sensor# show statistics virtual-sensor

Virtual Sensor Statistics

Statistics for Virtual Sensor vs0

Name of current Signature-Definition instance = sig0

Name of current Event-Action-Rules instance = rules0

List of interfaces monitored by this virtual sensor = mypair

Denied Address Information

Number of Active Denied Attackers = 0

Number of Denied Attackers Inserted = 2

Number of Denied Attackers Total Hits = 287

Number of times max-denied-attackers limited creation of new entry = 0

Number of exec Clear commands during uptime = 1

Denied Attackers and hit count for each.

Step 10 Clear only the statistics.

sensor# show statistics virtual-sensor clear

Step 11 Verify that you have cleared the statistics. The statistics have all been cleared except for the Number of

Active Denied Attackers

and Number of exec Clear commands during uptime categories. It is

important to know if the list has been cleared.

sensor# show statistics virtual-sensor

Virtual Sensor Statistics

Statistics for Virtual Sensor vs0

Name of current Signature-Definition instance = sig0

Name of current Event-Action-Rules instance = rules0

List of interfaces monitored by this virtual sensor = mypair

Denied Address Information

Number of Active Denied Attackers = 2

Number of Denied Attackers Inserted = 0

Number of Denied Attackers Total Hits = 0

Number of times max-denied-attackers limited creation of new entry = 0

Number of exec Clear commands during uptime = 1

Denied Attackers and hit count for each.

10.20.2.5 = 0

10.20.5.2 = 0

previous next