Contents
Links
IPS
Allgemeine Infos
Serial
115200 bps, 8 Data Bits, Parity None, Stop Bits 1
Reset
Reset SuperUser Password
Connect with console cable (115200 bps, 8 Data Bits, Parity None, Stop Bits 1) 1. Reboot 2. As the IPS is booting, watch for the word \u201cLoading\u201d, this comes up after the TippingPoint banner. 3. Type the word mkey within 3 seconds. 4. Specify the new security level, SuperUser login and password.
How to Reset an IPS to Factory Settings
debug factory-reset (debug is with older firmwares restricted, get SuperUser Password from support. provide conf t service-access information to TP.
Management
Disable SMS Mgmt.
configure terminal no sms
Enable SMS Mgmt.
configure terminal sms
Show SMS configuration
show sms
Configuring (restrict) the Management Port of the IPS
configure terminal host ip-filter permit ip 111.222.33.44 255.255.255.255
Using Non IE Browser
configure terminal server no browser-check
Version
show version
Stats
Rules, number of flows, successful matches
show np rule-stats show filter "filterNr"
Packet Statistic
show np engine packet
Port status, RX, TX, Autoneg
show interface ethernet 3 1 -details show interface mgmtEthernet -details
for details of IPS segment 1, segment 2 would be "3 2".
SMS
Allgemeine Infos
Serial
9600 bps, 8 Data Bits, Parity None, Stop Bits 1
Default Password (case sensitive!!!!)
login: SuperUser Password: SuperUser
Reset
Recovering a Lost SMS SuperUser Password
1. Reboot the SMS 2. When the LILO prompt appears, press the TAB key 3. Type Recover The SMS will run a recovery script that will ask for the new SuperUser password.
4. When the SMS is ready to login, specify; Login: SuperUser Password: SERIAL-NUMBER-OF-THE-SMS (Press ALT-F12 to see this) Press Alt-f1 to get back to the main login screen. Once in, you can change the password via the "getpasswd" command.
Resetting the SMS to Factory Defaults
Run the following sequence of commands to reset an SMS to its original factory settings. set db.reinit set pwd.service-enable=1 (wait for completion) set repos.reset=SERIAL OF SERVER (wait for completion) shutdown (will restart SMS with setup wizard)
After the reboot, you may need to run the \u201csetup\u201d command to initiate the setup wizard.
Management
How to Enable Pinging of the SMS
set svc.ping-enable=1
Lock Down the SMS Webpage on GUI
Edit -> Preferences -> Security -> Require Login for Web Access
CLI commands
New 2.5 commands
Static Routing
Adds static IP route route.add <destination> <mask> <gateway>
Deletes static IP route route.del <destination> <mask> < gateway>
Displays the IP routing table route.info
Network Speed, Mode and Auto-negotiation
Sets network speed in Mb/s net.speed.set= <network speed in Mb/s> example setting: 10\100\1000
Displays current net work speed net.speed.get
Sets full or half duplex mode net.duplex.set=half\full
Displays current duplex mode net.duplex.get
Enables or disables auto-negotiation net.autoneg.set=yes\no
Displays current auto negotiation net.autoneg.get
setting Keyboard Layout
Provides configuration steps for a new keyboard layout kbdcfg
Sets a specific keyboard layout set kbd.layout=<keyboard designation> example setting: sg for Swiss-German keyboard layout
othger supporded: sg-latin1 de de-latin1 for more layouts see 2.5 release notes
Allgemeine Infos
Security Levels
Level 0: User names and passwords are unrestricted. Level 1: Names must be at least 6 characters long; passwords at least 8. Level 2: In addition to level 1 restrictions, passwords must contain: – at least 2 alpha characters – at least 1 numeric character – at least 1 non-alphanumeric characters
Zusätzliche Filter konfiguration
Grundstzlich alle Filter auf "Recommanded Settings" belassen, da damit auch nach DV upgrade Filter aktiviert werden. Zustzlich blocken: - Spyware - Backdoor ev auch Filesharing und Instant Messaging, resp. "Windows command shell on high TCP port" Zustzlich zumindest auf Notify: - ZDI Filter Security Group je nach Kundenanforderungen anpassen Virus nicht auf Block+ Notify, sondern auf Block, Notify und Reset!
Aufpassen mit SMP und RPC Filter