Hi all I need to configure an IPS signature that inspect HTTP traffic that looks for a pattern "ATTACK" and also sees that port-miuse. p2p, im tunneling is not being done. I think, http AIC signatures can only do both the checks.
I tried as following with AIC HTTP engine - Define Web Traffic Policy > Select "Yes" - Message body Pattern > In the Regex list, I added "ATTACK" But, the problem is either one only can be configured. When I configure one and apply, the other one goes Please let me a how to configure a signature that - Detects "ATTACK" pattern - Detects port-miuse, p2p, im tunneling in HTTP With regards Kings
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
