Filter
Top Products
B-5
Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1
OL-19892-01
Appendix B Signature Engines
Master Engine
alert-severity Specifies the severity of the alert:
• Dangerous alert
• Medium-level alert
• Low-level alert
• Informational alert
high
medium
low
informational (default)
sig-fidelity-rating Specifies the rating of the fidelity of this signature. 0 to 100
(default = 100)
promisc-delta Specifies the delta value used to determine the
seriousness of the alert.
0 to 30
(default = 5)
sig-name Specifies the name of the signature. sig-name
alert-notes Provides additional information about this signature
that will be included in the alert message.
alert-notes
user-comments Provides comments about this signature. comments
alert-traits Specifies traits you want to document about this
signature.
0 to 65335
release Provides the release in which the signature was most
recently updated.
release
signature-creation-d
ate
Specifies the date the signature was created. —
signature-type Specifies the signature category. anomaly
component
exploit
other
vulnerability
engine Specifies the engine to which the signature belongs.
Note The engine-specific parameters appear under
the engine category.
—
event-count Specifies the number of times an event must occur
before an alert is generated.
1 to 65535
(default = 1)
event-count-key Specifies the storage type on which to count events
for this signature:
• Attacker address
• Attacker and victim addresses
• Attacker address and victim port
• Victim address
• Attacker and victim addresses and ports
Axxx
AxBx
Axxb
xxBx
AaBb
Table B-1 Master Engine Parameters (continued)
Parameter Description Value