660
Examples
# Create ASPF policy 1 and enter its view.
<Sysname> system-view
[Sysname] aspf policy 1
[Sysname-aspf-policy-1]
Related commands
display aspf all
display aspf policy
detect
Use
detect
to configure ASPF inspection for an application layer protocol.
Use
undo detect
to restore the default.
Syntax
detect
{
{
dns
[
action
{
drop
|
logging
} * ]
| ftp | h323 | http | sccp | sip | smtp
} [
action drop
]
|
gtp | ils
|
mgcp
|
nbt
|
pptp
|
rsh
|
rtsp
|
sqlnet
|
tftp
|
xdmcp
}
undo
detect
{
dns
|
ftp
|
gtp
|
h323
|
http
|
ils
|
mgcp
|
nbt
|
pptp
|
rsh
|
rtsp
|
sccp
|
sip
|
smtp
|
sqlnet
|
tftp
|
xdmcp
}
Default
ASPF does not inspect application layer protocols. ASPF inspects only transport layer protocols.
Views
ASPF policy view
Predefined user roles
network-admin
Parameters
dns
: Specifies DNS, an application layer protocol.
ftp
: Specifies FTP, an application layer protocol.
gtp
: Specifies GPRS Tunneling Protocol (GTP), an application layer protocol.
h323
: Specifies H.323 protocol stack, application layer protocols.
http
: Specifies HTTP, an application layer protocol.
ils
: Specifies Internet Locator Service (ILS), an application layer protocol.
mgcp
: Specifies Media Gateway Control Protocol (MGCP), an application layer protocol.
nbt
: Specifies NetBIOS over TCP/IP (NBT), an application layer protocol.
pptp
: Specifies Point-to-Point Tunneling Protocol (PPTP), an application layer protocol.
rsh
: Specifies Remote Shell (RSH), an application layer protocol.
rtsp
: Specifies Real Time Streaming Protocol (RTSP), an application layer protocol.
sccp
: Specifies Skinny Client Control Protocol (SCCP), an application layer protocol.
sip
: Specifies Session Initiation Protocol (SIP), an application layer protocol.
smtp
: Specifies SMTP, an application layer protocol.
sqlnet
: Specifies SQLNET, an application layer protocol.
tftp
: Specifies TFTP, an application layer protocol.
