Using The Cli To Configure Ids Signatures - Cisco SD2008T-NA Configuration Manual
4400 series wireless lan controller
Hide thumbs
Also See for SD2008T-NA:
- Configuration manual (46 pages) ,
- Installation manual (160 pages)
Table of Contents
Advertisement
Chapter 5
Configuring Security Solutions
•
•
Using the CLI to Configure IDS Signatures
Follow these steps to configure IDS signatures using the controller CLI.
If desired, create your own custom signature file.
Step 1
Make sure that you have a TFTP server available. See the guidelines for setting up a TFTP server in
Step 2
2
of the
Copy the custom signature file (*.sig) to the default directory on your TFTP server.
Step 3
To specify the download or upload mode, enter transfer {download | upload} mode tftp.
Step 4
To specify the type of file to be downloaded or uploaded, enter transfer {download | upload} datatype
Step 5
signature.
To specify the IP address of the TFTP server, enter transfer {download | upload} serverip
Step 6
tftp-server-ip-address.
Note
To specify the download or upload path, enter transfer {download | upload} path
Step 7
absolute-tftp-server-path-to-file.
To specify the file to be downloaded or uploaded, enter transfer {download | upload} filename
Step 8
filename.sig.
Note
Enter transfer {download | upload} start and answer y to the prompt to confirm the current settings
Step 9
and start the download or upload.
To enable or disable individual signatures, enter this command:
Step 10
config wps signature {standard | custom} state precedence# {enable | disable}
To save your changes, enter this command:
Step 11
save config
OL-9141-03
The radio channel on which the attack was detected
The day and time when the access point reported the attack
"Using the GUI to Upload or Download IDS Signatures" section on page
Some TFTP servers require only a forward slash (/) as the TFTP server IP address, and the TFTP
server automatically determines the path to the correct directory.
When uploading signatures, the controller uses the filename you specify as a base name and then
adds "_std.sig" and "_custom.sig" to it in order to upload both standard and custom signature
files to the TFTP server. For example, if you upload a signature file called "ids1," the controller
automatically generates and uploads both ids1_std.sig and ids1_custom.sig to the TFTP server.
If desired, you can then modify ids1_custom.sig on the TFTP server (making sure to set
"Revision = custom") and download it by itself.
Cisco Wireless LAN Controller Configuration Guide
Configuring IDS
Step
5-31.
5-37
Hide quick links:
Advertisement
Table of Contents
