Cisco Systems IPS 7.1 Home Security System User Manual


  Open as PDF
of 1042
 
16-19
Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1
OL-19892-01
Chapter 16 Working With Configuration Files
Displaying the Contents of a Logical File
sensor(config-net)# show settings | exclude false
general
-----------------------------------------------
log-all-block-events-and-errors: true default: true
block-enable: true default: true
block-max-entries: 11 default: 250
max-interfaces: 13 default: 250
master-blocking-sensors (min: 0, max: 100, current: 1)
-----------------------------------------------
ipaddress: 192.0.2.0
-----------------------------------------------
password: <hidden>
port: 443 default: 443
tls: true default: true
username: cisco default:
-----------------------------------------------
-----------------------------------------------
never-block-hosts (min: 0, max: 250, current: 1)
-----------------------------------------------
ip-address: 10.89.146.112
-----------------------------------------------
-----------------------------------------------
never-block-networks (min: 0, max: 250, current: 1)
-----------------------------------------------
ip-address: 88.88.88.0/24
--MORE--
Step 4 Filter the output of the host settings to include the regular expression “ip.”
sensor# configure terminal
sensor(config)# service host
sensor(config-hos)# show settings | include ip
host-ip: 192.0.2.0/24,192.0.2.17 default: 192.168.1.2/24,192.168.1.1
sensor(config-hos)#
Displaying the Contents of a Logical File
Note Operators and viewers can only display the current configuration. Only administrators can view hidden
fields such as passwords.
Use the more keyword command to display the contents of a logical file, such as the current system
configuration or the saved backup system configuration. The following options apply:
keyword—Specifies either the current-config or the backup-config:
current-config—Specifies the current running configuration. This configuration becomes
persistent as the commands are entered.
backup-config—Specifies the storage location for the configuration backup file.
You can disable the more prompt in more current-config or more backup-config by setting the terminal
length to zero using the terminal length 0 command. The more command then displays the entire file
content without pausing.
 previous next