Fortinet black logo

CLI Reference

7.4.3
7.4.3
7.4.2
7.4.1
7.4.0
7.2.8
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.15
7.0.14
7.0.13
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.15
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.16
6.2.15
6.2.14
6.2.13
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.0.0
5.6.0
5.4.0
5.2.0
5.0.0

config virtual-patch profile

config virtual-patch profile

Configure virtual-patch profile.

config virtual-patch profile
    Description: Configure virtual-patch profile.
    edit <name>
        set action [pass|block]
        set comment {var-string}
        config exemption
            Description: Exempt devices or rules.
            edit <id>
                set status [enable|disable]
                set rule <id1>, <id2>, ...
                set device <mac1>, <mac2>, ...
            next
        end
        set log [enable|disable]
        set severity {option1}, {option2}, ...
    next
end

config virtual-patch profile

Parameter

Description

Type

Size

Default

action

Action (pass/block).

option

-

block

Option

Description

pass

Allows session that match the profile.

block

Blocks sessions that match the profile.

comment

Comment.

var-string

Maximum length: 255

log

Enable/disable logging of detection.

option

-

enable

Option

Description

enable

Enable logging.

disable

Disable logging.

name

Profile name.

string

Maximum length: 35

severity

Relative severity of the signature (low, medium, high, critical).

option

-

low medium high critical

Option

Description

low

low

medium

medium

high

high

critical

critical

config exemption

Parameter

Description

Type

Size

Default

id

IDs.

integer

Minimum value: 0 Maximum value: 4294967295

0

status

Enable/disable exemption.

option

-

enable

Option

Description

enable

Enable exemption.

disable

Disable exemption.

rule <id>

Patch signature rule IDs.

Rule IDs.

integer

Minimum value: 0 Maximum value: 4294967295

device <mac>

Device MAC addresses.

Device MAC address.

mac-address

Not Specified

Previous
Next

config virtual-patch profile

Configure virtual-patch profile.

config virtual-patch profile
    Description: Configure virtual-patch profile.
    edit <name>
        set action [pass|block]
        set comment {var-string}
        config exemption
            Description: Exempt devices or rules.
            edit <id>
                set status [enable|disable]
                set rule <id1>, <id2>, ...
                set device <mac1>, <mac2>, ...
            next
        end
        set log [enable|disable]
        set severity {option1}, {option2}, ...
    next
end

config virtual-patch profile

Parameter

Description

Type

Size

Default

action

Action (pass/block).

option

-

block

Option

Description

pass

Allows session that match the profile.

block

Blocks sessions that match the profile.

comment

Comment.

var-string

Maximum length: 255

log

Enable/disable logging of detection.

option

-

enable

Option

Description

enable

Enable logging.

disable

Disable logging.

name

Profile name.

string

Maximum length: 35

severity

Relative severity of the signature (low, medium, high, critical).

option

-

low medium high critical

Option

Description

low

low

medium

medium

high

high

critical

critical

config exemption

Parameter

Description

Type

Size

Default

id

IDs.

integer

Minimum value: 0 Maximum value: 4294967295

0

status

Enable/disable exemption.

option

-

enable

Option

Description

enable

Enable exemption.

disable

Disable exemption.

rule <id>

Patch signature rule IDs.

Rule IDs.

integer

Minimum value: 0 Maximum value: 4294967295

device <mac>

Device MAC addresses.

Device MAC address.

mac-address

Not Specified

Previous
Next