B-18
Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1
OL-19892-01
Appendix B Signature Engines
Atomic Engine
specify-min-match-offset {yes |
no}
Enables minimum match offset:
• min-match-offset—Specifies the
minimum stream offset the regex-string
must report for a match to be valid.
0 to 65535
specify-max-match-offset {yes
| no}
Enables maximum match offset:
• max-match-offset—Specifies the
maximum stream offset the regex-string
must report for a match to be valid.
0 to 65535
IPv6
specify-authentication-header
{yes | no}
(Optional) Enables inspection of the
authentication header:
• ah-present—Inspects the authentication
header:
–
ah-length—Specifies the length of the
authentication header to inspect.
–
ah-next-header—Specifies the value
of the authentication header to
inspect.
• have-ah | no-ah0
to 1028
• 0 to 255
specify-dest-options-header
{yes | no}
(Optional) Enables inspection of the
destination options header:
• doh-present—Inspects the destination
options header:
–
doh-count—Specifies the number of
destination options headers to
inspect.
–
doh-length—Specifies the length of
destination options headers to
inspect.
–
doh-next-header—Specifies the
number of next destination options
headers to inspect.
–
doh-option-type—Specifies the type
of destination options headers to
inspect.
–
doh-option-length—Specifies the
length of destination options headers
to inspect.
• have-doh |
no-doh0 to 2
• 8 to 2048
• 0 to 255
• 0 to 255
• 0 to 255
specify-esp-header {yes | no} (Optional) Enables inspection of the ESP
header:
• esp-present —Inspects the ESP header.
have-esp | no-esp
Table B-8 Atomic IP Advanced Engine Parameters (continued)
Parameter Description Value