forbid Forbids external references. An external reference causes the XML parser to
ignore Ignores external DTD references, and replaces external entities with the
firewall-parser-limits
Indicates whether to use firewall-specific parser limitations.
Syntax
firewall-parser-limits {on | off}
Parameters
on
off
Guidelines
Parser limits protect against denial-of-service attacks that use malicious XML
documents that seek to exhaust system resources. With firewall-specific parser
limits enabled, incoming documents are evaluated using the values that are
defined by the attribute-count, bytes-scanned, and element-depth commands.
Related Commands
attribute-count, bytes-scanned, element-depth
Examples
v Enables firewall-specific parser limits.
forbid-external-references (deprecated)
Comments
This command has been deprecated. Use the external-references command.
front-attachment-format
Specifies the attachment format received from front end clients.
Syntax
front-attachment-format {dime | dynamic | mime}
Parameters
dime
abort.
empty string
Enables firewall-specific parser limits.
(Default) Uses the parser limits that are defined for the associated XML
Manager.
# firewall-parser-limits on
# attribute-count 512
# bytes-scanned 2097152
# element-depth 128
#
Indicates that client attachments are DIME-encapsulated documents.
Chapter 106. XML Firewall configuration mode
897