3Com Switch 8800 Family Firewall Module Configuration and Command Reference Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module

131

132

133

134

135

136

137

138

139

140

138 CHAPTER 9: WEB AND E-MAIL FILTERING

The system predefines these filter keywords for SQL attack prevention: ^select^,

^insert^, ^update^, ^delete^, ^drop^, -, ’, ^exec^ and %27. If you delete some

keywords unconsciously or use the firewall url-filter parameter clear command

by mistake, you can restore the default configuration with this command.

Saving/loading SQL attack prevention filter file

After configuring filter keywords, you can save them in the filter file. You can load

the filter file later if you want to modify the existing configuration or make other

settings.

Perform the following configuration in system view.

To validate the entries in SQL attack prevention filter file enable them to filter HTTP

commands, you must load them.

Displaying and debugging SQL attack prevention configuration

Use the commands listed in Table 134 to display information about SQL attack

prevention filtering and enable/disable debugging SQL attack prevention filtering.

Execute the display command in any view, and execute the debugging and

reset commands in user view.

Tabl e 132 Configure filter keywords for SQL attack prevention

Operation Command

Add a filter keyword for SQL attack

prevention

firewall url-filter parameter add keywords

Add the system-default filter keywords firewall url-filter parameter add-default

Delete a filter keyword

firewall url-filter parameter delete

keywords

Clear all filter keywords firewall url-filter parameter clear

Tabl e 133 Save/load SQL attack prevention filter file

Operation Command

Save/load SQL attack prevention filter file

firewall url-filter parameter { save-file |

load-file } file-name

Unload the SQL attack prevention filter file

undo firewall url-filter parameter

load-file

Tabl e 134 Display and debug SQL attack prevention configuration

Operation Command

Display SQL attack prevention filter

configuration

display firewall url-filter parameter {

enable | all | item { keywords | all } }

Display the number for matching each filter

keyword

display firewall url-filter parameter

counter detail

Enable debugging for SQL attack prevention

debugging firewall url-filter parameter {

all | error | event | filter | packet }

Disable debugging for SQL attack prevention

undo debugging firewall url-filter

parameter { all | error | event | filter |

packet }

Clear statistics on SQL attack prevention reset firewall url-filter parameter counter