Alcatel-Lucent 6850-48 Reference Guide
Network Security Commands
page 61-4
OmniSwitch CLI Reference Guide
September 2009
netsec group anomaly
Configures various anomaly parameters of a monitoring-group and specifies the anomaly to monitor for
the monitoring-group.
the monitoring-group.
netsec group {grp_name | all} anomaly {anomaly_name | all} {{{state | log | trap | quarantine} {enable |
disable}} | {period seconds} | {count num} | {sensitivity num}}
disable}} | {period seconds} | {count num} | {sensitivity num}}
no netsec group grp_name anomaly {anomaly_name | all} {state | log | trap | quarantine | period |
count | sensitivity}
count | sensitivity}
Syntax Definitions
grp_name
The name of the monitoring-group (up to 32 characters).
group all
Specifies all the monitoring-groups.
anomaly_name
The type of the anomaly to be enabled or disabled. (Refer to the table in
the “Usage Guidelines” section below for a list of supported anomalies).
the “Usage Guidelines” section below for a list of supported anomalies).
anomaly all
Monitors all anomalies.
state
Specifies the status of anomaly detection.
log
Logs detected anomalies.
trap
Sends a trap when an anomaly is detected.
quarantine
Quarantines the port on which an anomaly is detected.
period seconds
The time duration to observe traffic pattern, in seconds. The valid range
is 5-3600
is 5-3600
count num
The number of packets that must be seen during the period to trigger
anomaly detection. The valid range is 1-100000.
anomaly detection. The valid range is 1-100000.
sensitivity num
Sensitivity of anomaly detection to deviation from the expected traffic
pattern. The valid range is 1-100.
pattern. The valid range is 1-100.
enable
Enables the status of the state, log, trap, and quarantine parameters for
the anomaly.
the anomaly.
disable
Disables the status of the state, log, trap, and quarantine parameters for
the anomaly.
the anomaly.