In the CLI console, enter the following commands to create SSH filter profiles with restricted mode disabled and another with restricted mode enabled:
config ssh-filter profile
edit "test_profile" #SSH filter profile with restricted mode disabled
set restricted-mode disable
config shell-commands
edit 1
set pattern "ping 8.8.8.8"
set exact-match enable
set severity low
next
edit 2
set pattern "ifconfig"
set log enable
set severity low
next
edit 3
set pattern "ls"
next
end
next
edit "test_profile2" #SSH filter profile with restricted mode enabled
set restricted-mode enable
set shortcut-input enable
config shell-commands
edit 1
set pattern "ping"
set severity low
next
edit 2
set pattern "ifconfig virbr0"
set exact-match enable
next
edit 3
set pattern "ls"
set log enable
next
end
next
end
