White Paper
All contents are Copyright © 1992–2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 11 of 12
Here is another example to unretire all signatures belonging to the ios_ips basic category.
training#configure terminal
Enter configuration commands, one per line. End with CNTL/Z
training(config)#ip ips signature-category
training(config-ips-category)# category ios_ips basic
training(config-ips-category-action)#retired false
training(config-ips-category-action)#exit
training(config-ips-category)#exit
Do you want to accept these changes? [confirm]y
Additional Commands and References
Cisco IOS IPS Configuration Guide:
http://www.cisco.com/en/US/products/ps6441/products_feature_guide09186a0080747eb0.html
8 Change Signature Actions
You can use the Cisco IOS Software CLI to change signature actions for one signature or a
group of signatures based on signature categories.
Following are example CLI commands to change signature action to alert, drop, and reset for
signature 6130/10.
training#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
training(config)#ip ips signature-definition
training(config-sigdef)#signature 6130 10
training(config-sigdef-sig)#engine
training(config-sigdef-sig-engine)#event-action produce-alert
training(config-sigdef-sig-engine)#event-action deny-packet-inline
training(config-sigdef-sig-engine)#event-action reset-tcp-connection
training(config-sigdef-sig-engine)#exit
training(config-sigdef-sig)#exit
training(config-sigdef)#exit
Do you want to accept these changes? [confirm]y
training(config)#