F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Attack Protection Configuration Guide-6PW100
113
Ste
p
Command
Remarks
1. Enter system view. system-view N/A
2. Enter VD view.
switchto vd vd-name
This command is required for entering the
system view of a non-default VD.
3. Create a Telnet
filtering policy and
enter its view.
content-filtering telnet-policy
policy-name
By default, no Telnet filtering policy exists.
4. Specify a keyword
filtering entry for
command word
filtering.
command-filtering
keyword-entry
keyword-entry-name
Optional.
By default, no keyword filtering entry is
specified for command word filtering.
5. Enable Telnet filtering
logging.
logging enable
Optional.
By default, Telnet filtering logging is
disabled.
Telnet filtering logging takes effect only when
interzone policy rule logging is enabled.
NOTE:
• Telnet filtering policies created in system view belong to the default VD.
• Telnet filtering policies created in VD view belong to the corresponding VD.
216BConfiguring a content filtering policy template
A content filtering policy template combines content filtering policies. You can apply configured content
filtering policies in a policy template to filter specific packets.
To configure a content filtering policy template:
Ste
p
Command
Remarks
1. Enter system view.
system-view
N/A
2. Enter VD view. switchto vd vd-name
This command is required for
entering the system view of a
non-default VD.
3. Create a content
filtering policy template
and enter its view.
content-filtering policy-template
policy-template-name
By default, no content filtering policy
template exists.
4. Apply a content filtering
policy.
• Apply an HTTP filtering policy:
http-policy policy-name
• Apply an SMTP filtering policy:
smtp-policy policy-name
• Apply a POP3 filtering policy:
pop3-policy policy-name
• Apply an FTP filtering policy:
ftp-policy policy-name
• Apply a Telnet filtering policy:
telnet-policy policy-name
Configure at least one command.
By default, no content filtering policy
is applied in a policy template.