B-26
Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1
OL-19892-01
Appendix B Signature Engines
Atomic Engine
specify-ip-id {yes | no} (Optional) Enables inspection of the IP
identifier:
• ip-id—Specifies the IP ID to
inspect.
0 to 255
specify-ip-option-inspection {yes |
no}
(Optional) Enables inspection of the IP
options:
• ip-option-inspection—Specifies
the value of the IP option:
–
ip-option—Specifies the IP
OPTION code to match.
–
ip-option-abnormal—Specifies
the list of options is
malformed.
0 to 65535
specify-ip-payload-length {yes | no} (Optional) Enables inspection of the IP
payload length:
• ip-payload-length—Specifies the
length of IP payload to inspect.
0 to 65535
specify-ip-tos {yes | no} (Optional) Specifies the IP type of
service:
• ip-tos—Specifies the IP type of
service to inspect.
0 to 6 255
specify-ip-total-length {yes | no} (Optional) Enables inspection of the IP
total length:
• ip-total-length—Specifies the
total length of IP packet to inspect.
0 to 65535
specify-ip-ttl {yes | no} (Optional) Enables inspection of IP
time-to-live:
• ip-ttl—Specifies the value of the
IP TTL to inspect.
0 to 255
specify-ip-version {yes | no} (Optional) Enables inspection of the IP
version:
• ip-version—Specifies which IP
version to inspect.
0 to 16
specify-l4-protocol {yes | no} (Optional) Enables inspection of the
Layer 4 protocol:
• l4-protocol—Specifies which
Layer 4 protocol to inspect.
icmp
tcp
udp
other-protocol
specify-icmp-code {yes | no} (Optional) Enables inspection of the
Layer 4 ICMP code:
• icmp-code—Specifies the value of
the ICMP header CODE.
0 to 65535
Table B-9 Atomic IP Engine Parameters (continued)
Parameter Description Value