Fortinet black logo

CLI Reference

config ips custom

config ips custom

Configure IPS custom signature.

config ips custom
    Description: Configure IPS custom signature.
    edit <tag>
        set action [pass|block]
        set application {user}
        set comment {string}
        set location {user}
        set log [disable|enable]
        set log-packet [disable|enable]
        set os {user}
        set protocol {user}
        set rule-id {integer}
        set severity {user}
        set signature {var-string}
        set status [disable|enable]
    next
end

config ips custom

Parameter

Description

Type

Size

Default

action

Default action (pass or block) for this signature.

option

-

pass

Option

Description

pass

Pass or allow matching traffic.

block

Block or drop matching traffic.

application

Applications to be protected. Blank for all applications.

user

Not Specified

comment

Comment.

string

Maximum length: 63

location

Protect client or server traffic.

user

Not Specified

log

Enable/disable logging.

option

-

enable

Option

Description

disable

Disable logging.

enable

Enable logging.

log-packet

Enable/disable packet logging.

option

-

disable

Option

Description

disable

Disable packet logging.

enable

Enable packet logging.

os

Operating system(s) that the signature protects. Blank for all operating systems.

user

Not Specified

protocol

Protocol(s) that the signature scans. Blank for all protocols.

user

Not Specified

rule-id

Signature ID.

integer

Minimum value: 0 Maximum value: 4294967295

0

severity

Relative severity of the signature, from info to critical. Log messages generated by the signature include the severity.

user

Not Specified

signature

Custom signature enclosed in single quotes.

var-string

Maximum length: 4095

status

Enable/disable this signature.

option

-

enable

Option

Description

disable

Disable status.

enable

Enable status.

tag

Signature tag.

string

Maximum length: 63

config ips custom

Configure IPS custom signature.

config ips custom
    Description: Configure IPS custom signature.
    edit <tag>
        set action [pass|block]
        set application {user}
        set comment {string}
        set location {user}
        set log [disable|enable]
        set log-packet [disable|enable]
        set os {user}
        set protocol {user}
        set rule-id {integer}
        set severity {user}
        set signature {var-string}
        set status [disable|enable]
    next
end

config ips custom

Parameter

Description

Type

Size

Default

action

Default action (pass or block) for this signature.

option

-

pass

Option

Description

pass

Pass or allow matching traffic.

block

Block or drop matching traffic.

application

Applications to be protected. Blank for all applications.

user

Not Specified

comment

Comment.

string

Maximum length: 63

location

Protect client or server traffic.

user

Not Specified

log

Enable/disable logging.

option

-

enable

Option

Description

disable

Disable logging.

enable

Enable logging.

log-packet

Enable/disable packet logging.

option

-

disable

Option

Description

disable

Disable packet logging.

enable

Enable packet logging.

os

Operating system(s) that the signature protects. Blank for all operating systems.

user

Not Specified

protocol

Protocol(s) that the signature scans. Blank for all protocols.

user

Not Specified

rule-id

Signature ID.

integer

Minimum value: 0 Maximum value: 4294967295

0

severity

Relative severity of the signature, from info to critical. Log messages generated by the signature include the severity.

user

Not Specified

signature

Custom signature enclosed in single quotes.

var-string

Maximum length: 4095

status

Enable/disable this signature.

option

-

enable

Option

Description

disable

Disable status.

enable

Enable status.

tag

Signature tag.

string

Maximum length: 63