Filter
Top Products
B-40
Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1
OL-19892-01
Appendix B Signature Engines
Service Engines
For More Information
• For the procedure for configuring IP fragment reassembly signatures in the Normalizer engine, see
Configuring IP Fragment Reassembly, page 8-28.
• For the procedure for configuring TCP stream reassembly signatures in the Normalizer engine, see
Configuring TCP Stream Reassembly, page 8-31.
• For more information on the parameters common to all signature engines, see Master Engine,
page B-4.
Service Engines
This section describes the Service engines, and contains the following topics:
• Understanding the Service Engines, page B-41
• Service DNS Engine, page B-41
• Service FTP Engine, page B-42
• Service Generic Engine, page B-43
• Service H225 Engine, page B-45
• Service HTTP Engine, page B-47
• Service IDENT Engine, page B-49
• Service MSRPC Engine, page B-50
• Service MSSQL Engine, page B-52
• Service NTP Engine, page B-53
• Service P2P Engine, page B-54
• Service RPC Engine, page B-54
specify-max-small-fragss (Optional) Enables maximum small fragments.
specify-min-fragment-size (Optional) Enables minimum fragment size.
specify-service-ports (Optional) Enables service ports.
specify-syn-flood-max-embryonic (Optional) Enables SYN flood maximum embryonic.
specify-tcp-closed-timeout (Optional) Enables TCP closed timeout.
specify-tcp-embryonic-timeout (Optional) Enables TCP embryonic timeout.
specify-tcp-idle-timeout (Optional) Enables TCP idle timeout:
• tcp-idle-timeout—Lets you specify the TCP idle timeout
time.
specify-tcp-max-mss (Optional) Enables TCP maximum mss.
specify-tcp-max-queue (Optional) Enables TCP maximum queue.
specify-tcp-min-mss (Optional) Enables TCP minimum mss.
specify-tcp-option-number (Optional) Enables TCP option number.
Table B-17 Normalizer Engine Parameters (continued)
Parameter Description