R2511-HP MSR Router Series Security Command Reference(V5)

ManualsBrandsHP ManualsNetwork HardwareHP MSR1003-8 AC Router

411

412

413

414

415

416

417

418

419

420

404

Examples

# Specify ASPF policy 1 for the HTTP protocol, enable Java blocking, and configure ACL 2000 so that

the ASPF policy can filter Java applets from the server 10.1.1.1.

<Sysname> system-view

[Sysname] acl number 2000

[Sysname-acl-basic-2000] rule permit source 10.1.1.1 0

[Sysname-acl-basic-2000] rule deny source any

[Sysname-acl-basic-2000] quit

[Sysname] aspf-policy 1

[Sysname-aspf-policy-1] detect http java-blocking 2000

Related commands

• display aspf all

• display aspf interface

• display aspf policy

• display aspf session

display aspf all

Use display aspf all to view the information of all the ASPF policies and sessions.

Syntax

display aspf all [ | { begin | exclude | include } regular-expression ]

Views

Any view

Default command level

1: Monitor level

Parameters

|: Filters command output by specifying a regular expression. For more information about regular

expressions, see Fundamentals Configuration Guide.

begin: Displays the first line that matches the specified regular expression and all lines that follow.

exclude: Displays all lines that do not match the specified regular expression.

include: Displays all lines that match the specified regular expression.

regular-expression: Specifies a regular expression, a case-sensitive string of 1 to 256 characters.

Examples

# Display the information of all the ASPF policies and sessions.

<Sysname> display aspf all

[ASPF Policy Configuration]

Policy Number 1:

Log: disable

SYN timeout: 30 s

FIN timeout: 5 s

TCP timeout: 3600 s

UDP timeout: 30 s