Example: Restricted IP options policy

 

This example is of an IDS attack-type policy that targets restricted IP options in the range of 200 to 205.

  ibm-idsConditionAuxClass     idscond4   # IDS condition   {
  ibm-idsConditionType         ATTACK   ibm-idsAttackType            RESTRICTED_IP_OPTIONS   ibm-idsProtocolRange         200-205   ibm-policyIdsActionName      idsact2   }

  ibm-idsActionAuxClass        idsact2   {
  ibm-idsActionType            ATTACK   ibm-idsMaxEventMessage       5   }

 

Parent topic:

Editing the intrusion detection policy file