You are here: Home > CLI Commands > Just_CLI_Topics > show ids dos-profile

show ids dos-profile

show ids dos-profile <profile-name>

Description

Show an IDSIntrusion Detection System. IDS monitors a network or systems for malicious activity or policy violations and reports its findings to the management system deployed in the network. DoSDenial of Service. DoS is any type of attack where the attackers send excessive messages to flood traffic and thereby preventing the legitimate users from accessing the service. Profile.

Syntax

Parameter

Description

<profile-name>

Name of an IDSIntrusion Detection System. IDS monitors a network or systems for malicious activity or policy violations and reports its findings to the management system deployed in the network. DoSDenial of Service. DoS is any type of attack where the attackers send excessive messages to flood traffic and thereby preventing the legitimate users from accessing the service. profile.

Usage Guidelines

Issue this command without the <profile-name>parameter to display an IDSIntrusion Detection System. IDS monitors a network or systems for malicious activity or policy violations and reports its findings to the management system deployed in the network. DoSDenial of Service. DoS is any type of attack where the attackers send excessive messages to flood traffic and thereby preventing the legitimate users from accessing the service. profile.

Examples

The example below shows that the controller has four configured DoSDenial of Service. DoS is any type of attack where the attackers send excessive messages to flood traffic and thereby preventing the legitimate users from accessing the service. profiles.

(host) [mynode] (config) #show ids dos-profile

 

IDS Denial Of Service Profile List

----------------------------------

Name References Profile Status

---- ---------- --------------

default 4

test 0

test1 1

Wizard-test 1

Wizard-test2 1

 

Total:5

In the example above, the Reference column indicates the number of references to the profile named in the Name column. The Profile Status column is blank unless the rule is predefined.

The example below displays a partial output for the profile “test1”.

 

(host) (config) #show ids dos-profile test1

Parameter Value

--------- -----

Detect Disconnect Station Attack true

Disconnect STA Assoc Response Theshold 5

Disconnect STA Deauth and Disassoc Theshold 8

Disconnect STA Detection Quiet Time 900 sec

Spoofed Deauth Blacklist Disabled

Detect AP Flood Attack false

AP Flood Threshold 50

AP Flood Increase Time 3 sec

AP Flood Detection Quiet Time 900 sec

Detect Client Flood Attack false

Client Flood Threshold 150

Client Flood Increase Time 3 sec

Client Flood Detection Quiet Time 900 sec

Detect EAP Rate Anomaly false

EAP Rate Threshold 60

EAP Rate Time Interval 3 sec

EAP Rate Quiet Time 900 sec

Detect CTS Rate Anomaly false

CTS Rate Threshold 5000

CTS Rate Time Interval 5 sec

CTS Rate Quiet Time 900 sec

Detect RTS Rate Anomaly false

RTS Rate Threshold 5000

RTS Rate Time Interval 5 sec

RTS Rate Quiet Time 900 sec

Detect Rate Anomalies false

Rate Thresholds for Assoc Frames default

Rate Thresholds for Disassoc Frames default

Rate Thresholds for Deauth Frames default

...

For a detailed explanation of the output shown above, see the ids dos-profile command.

Related Commands

Command

Description

ids dos-profile

This command configures IDSIntrusion Detection System. IDS monitors a network or systems for malicious activity or policy violations and reports its findings to the management system deployed in the network. DoSDenial of Service. DoS is any type of attack where the attackers send excessive messages to flood traffic and thereby preventing the legitimate users from accessing the service. profiles.

Command History

Release

Modification

ArubaOS 8.0.0.0

Command introduced.

Command Information

Platforms

License

Command Mode

All platforms

Requires the RFprotect license.

Config mode on Mobility Master.

/*]]>*/