Configuring Anomaly Settings - Fortinet FortiGate FortiGate-1000A Administration Manual
Fortinet fortigate fortigate-1000a: user guide
Hide thumbs
Also See for FortiGate FortiGate-1000A:
- Install manual (58 pages) ,
- Quick start manual (2 pages) ,
- Administration manual (458 pages)
Table of Contents
Advertisement
IPS
Configuring anomaly settings
FortiGate-1000A/FA2 Administration Guide
Keywords and variables
ip_signature
{enable | disable}
system global ips-size
Set the size of the IPS buffer.
Command syntax pattern
config sys global
set
ips-size <ips_buffer_size>
end
Keywords and variables
ips-size
<ips_buffer_size>
(config ips anomaly) config limit
Note: This command has more keywords than are listed in this Guide. See the FortiGate CLI
Reference Guide for a complete list of commands and keywords.
Access the config limit subcommand using the config ips anomaly
<name_str> command. Use this command for session control based on source and
destination network address. This command is available for tcp_src_session,
tcp_dst_session, icmp_src_session, icmp_dst_session,
udp_src_session, udp_dst_session.
You cannot edit the default entry. Addresses are matched from more specific to
more general. For example, if you define thresholds for 192.168.100.0/24 and
192.168.0.0/16, the address with the 24 bit netmask will be matched first.
Command syntax pattern
config limit
edit <name_str>
set <keyword> <variable>
end
config limit
edit <name_str>
unset <keyword>
end
01-28011-0254-20051115
Description
Enter one of the following:
disable
• only TCP, UDP and ICMP packets are
processed by IPS signatures.
enable
• other protocols in addition to TCP,
UDP, and ICMP are processed by IPS
signatures.
Description
Set IPS buffer size. The default value is
correct in most cases.
IPS CLI configuration
Default
disable
Default
model-
dependent
305
Advertisement
Table of Contents
Need help?
Do you have a question about the FortiGate FortiGate-1000A and is the answer not in the manual?