Руководство Администратора межсетевого экрана Акер 3.01



         

Использование интерфейса командной строки - часть 2


Пример 1: (Настройка параметров для отправки e-mail и выполнение программы)

#fwacao e-mail root

#fwacao program /etc/pager

#fwacao user nobody

Пример 2: (Просмотр всех описаний реакции системы)

#fwacao show

General Conditions:

00 - Packet did not match any rule Log

Log messages:

01 - Possible fragmentation attack Log Mail 02 - Source routed IP packet Log 03 - Land attack Log Mail Alert 04 - Connection is not present in the dynamic table

05 - Packet was received from an invalid interface Log 06 - Packet was received from an unknown interface Log 07 - Possible FTP simulation attack Log Mail Trap Program      (...)

87 - Error in the previous operation   Log 88 - User without access right Log 89 - Unrecognized packet Log

Configuration parameters:

program   : /etc/pager user      : nobody e-mail    : root community : ip        :

Внимание: Из-за большого количества сообщений в примере будут приведены только первое и последнее. Настоящая программа в процессе выполнения покажет все сообщения.

Пример 3: (Описание реакции на сообщение Packet did not match any rule и просмотр сообщений)

#fwacao assign 0 log mail alert

#fwacao show

General Conditions:

00 - Packet did not match any rule Log Mail Alert

Log messages:

01 - Possible fragmentation attack Log Mail 02 - Source routed IP packet Log 03 - Land attack Log Mail Alert 04 - Connection is not present in the dynamic table

05 - Packet was received from an invalid interface Log 06 - Packet was received from an unknown interface Log 07 - Possible FTP simulation attack Log Mail Trap Program      (...)

87 - Error in the previous operation   Log 88 - User without access right Log 89 - Unrecognized packet Log

Configuration parameters:

program   : /etc/pager user      : nobody e-mail    : root community : ip        :

Пример 4: (Отмена реакции на сообщение Source routed IP packet)

#fwacao assign 2

#fwacao show

General Conditions:

00 - Packet did not match any rule Log Mail Alert

Log messages:

01 - Possible fragmentation attack Log Mail 02 - Source routed IP packet   03 - Land attack Log Mail Alert 04 - Connection is not present in the dynamic table

05 - Packet was received from an invalid interface Log 06 - Packet was received from an unknown interface Log 07 - Possible FTP simulation attack Log Mail Trap Program      (...)

87 - Error in the previous operation   Log 88 - User without access right Log 89 - Unrecognized packet Log

Configuration parameters:

program   : /etc/pager user      : nobody e-mail    : root community : ip        :




Содержание  Назад  Вперед