Filter
Top Products
B-28
Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1
OL-19892-01
Appendix B Signature Engines
Atomic Engine
specify-tcp-flags {yes | no} (Optional) Enables TCP flags for use:
• tcp-flags—Specifies the TCP flags
to match when masked by mask:
–
URG bit
–
ACK bit
–
PSH bit
–
RST bit
–
SYN bit
–
FIN bit
urg
ack
psh
rst
syn
fin
specify-tcp-reserved {yes | no} (Optional) Enables TCP reserved for
use:
• tcp-reserved—Specifies the value
of TCP reserved.
0 to 63
specify-tcp-header-length {yes | no} (Optional) Enables inspection of the
Layer 4 TCP header length:
• tcp-header-length—Specifies the
length of the TCP header used in
inspection.
0 to 60
specify-tcp-payload-length {yes |
no}
(Optional) Enables inspection of the
Layer 4 TCP payload length:
• tcp-payload-length—Specifies the
length of the TCP payload.
0 to 65535
specify-tcp-urg-pointer {yes | no} (Optional) Enables inspection of the
L4 TCP URG pointer:
• tcp-urg-pointer—Specifies the
value of the TCP URG flag to
inspect.
0 to 65535
specify-tcp-window-size {yes | no} (Optional) Enables inspection of the
Layer 4 TCP window size:
• tcp-window-size—Specifies the
window size of the TCP packet.
0 to 65535
specify-udp-length {yes | no} (Optional) Enables inspection of the
Layer 4 UDP length:
• udp-length-—Fires an alert when
the IP Data length is less than the
UDP Header length.
0 to 65535
Table B-9 Atomic IP Engine Parameters (continued)
Parameter Description Value