Filter
Top Products
B-68
Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1
OL-19892-01
Appendix B Signature Engines
String XL Engines
specify-max-match-offset
{yes | No}
Enables maximum match offset:
• maximum-match-offset—Specifies the
maximum stream offset in bytes the regular
expression string must report for a match to
be valid.
0 to 65535
specify-min-match-offset {yes
| No}
Enables minimum match offset:
• min-match-offset—Specifies the minimum
stream offset in bytes the regular expression
string must report for a match to be valid.
0 to 65535
specify-max-match-
length {yes | No}
Enables maximum match length:
• max-match-length—Specifies the maximum
number of bytes the regular expression string
must match for the pattern to be considered a
hit.
0 to 65535
specify-min-match-
length {yes | No}
Enables minimum match length:
• min-match-length—Specifies the minimum
number of bytes the regular expression string
must match for the pattern to be considered a
hit.
0 to 65535
specify-max-stream-
length {yes | No}
Enables maximum stream length:
• max-stream-
length—Limits the search to the first
configured number of bytes. The length of the
stream is checked again this value. If the
stream contains more bytes than this value, an
alert is triggered.
Note When you specify this parameter, you
cannot configure raw-regex or
regex-string.
yes | no
0 to 65535
specify-max-whole-
length {yes | No}
Enables maximum whole length:
• max-whole-length—Specifies the maximum
length for the pattern that will not be
fragmented.
yes | no
0 to 65535
specify-min-whole-
length {yes | No}
Enables minimum whole length:
• min-whole-length—Specifies the minimum
length for the pattern that will not be
fragmented.
yes | no0 to
65535
stingy Specifies to stop looking for larger matches after
the first completed match.
Note stingy can only be used with
min-match-length; otherwise, it is
ignored.
true | false
(default)
Table B-36 String XL Engine Parameters (continued) (continued)
Parameter Description Value