Table of Contents

Chapter 1 IDS Linkage Configuration Commands. 1-1

1.1 IDS Linkage Configuration Commands. 1-1

1.1.1 ids-acl 1-1

1.1.2 display ids. 1-1

1.1.3 debugging ids-acl 1-2

 

Chapter 1  IDS Linkage Configuration Commands

1.1  IDS Linkage Configuration Commands

1.1.1  ids-acl

Syntax

ids-acl enable

undo ids-acl enable

View

Ethernet port view

Parameters

disable: Disable IDS linkage on the port.

enable: Enable IDS linkage on the port.

Description

Use the acl-ids enable command to enable IDS linkage function.

Use the undo ids-acl enable command to disable IDS linkage function.

Examples

# Enable IDS linkage on port Ethernet 3/1/1.

<H3C> system-view

[H3C] interface Ethernet 3/1/1 

[H3C-Ethernet3/1/1] ids-acl enable

1.1.2  display ids

Syntax

display ids { all | controlled-interface | name name | source ip-addr | destination ip-addr }

View

Any view

Parameters

all: Displays all information about IDS linkage.

name: Name of the IDS item to be displayed.

source ip-addr: Displays IDS linkage information about the specified source IP address.

destination ip-addr: Displays IDS linkage information about the specified destination IP address.

controlled-interface: Displays a list of ports with IDS linkage currently enabled.

Description

Use the display ids command to display IDS linkage information, which includes:

l           The total number of IDS linkage messages

l           The list of ports available for IDS linkage

l           Displays the IDS linkage information which meets the requirement on by one

Examples

# Display all information about IDS linkage.

<H3C> system-view

System View: return to User View with Ctrl+Z.

[H3C]display ids all

Port list under IDS control is:                                    

   Ethernet2/1/10          Ethernet2/1/11          Ethernet2/1/12  

   Ethernet2/1/13          Ethernet2/1/14          Ethernet2/1/15  

ACL group ID list used by IDS is:                                  

    3997 3996 3995 3994 3993 3992 3991 3990 3989 3988              

Number of items 1, running items 1                                 

ACL rules created by IDS is:                                       

  1  Name 4                                                        

    Action deny,  time 3000, curtime 2860, group 3997, subitem 0   

    Smac any,    sip any,  swild 255.255.255.255,        prot 1    

    Dmac any,    dip any,  dwild 255.255.255.255,        prot 1

1.1.3  debugging ids-acl

Syntax

debugging ids-acl

undo debugging ids-acl

View

User view

Parameters

None

Description

Use the debugging ids-acl command to enable IDS linkage debugging.

Use the undo debugging ids-acl command to disable IDS linkage debugging.

By default, IDS linkage debugging is disabled.

Examples

# Enable IDS linkage debugging.

<H3C>debugging ids-acl

# Disable IDS linkage debugging.

<H3C>undo debugging ids-acl