Cisco Cisco Firepower Management Center 4000

Admin/Intrusion Admin

Select 

The Intrusion Policy page appears.

Click the edit icon (

) next to the policy you want to edit.

If you have unsaved changes in another policy, click 

 to discard those changes and continue. See 

 for information on saving unsaved changes in another 

policy.

The Policy Information page appears.

Click 

 in the navigation panel on the left.

The Advanced Settings page appears.

You have two choices, depending on whether 

under Performance Settings is 

enabled:

If the configuration is enabled, click 

.

If the configuration is disabled, click 

, then click 

.

The Regular Expression Limits page appears.

A message at the bottom of the page identifies the intrusion policy layer that contains the configuration. 
See 

 for more information.

You can modify any of the options in the 

Match Limit State

Specifies whether to override

. You have the following options:

select 

 to use the value configured for 

select 

 to permit an unlimited number of attempts.

select 

 to specify either a limit of 1 or greater for 

, or to 

specify 0 to completely disable PCRE match evaluations

Match Limit

Specifies the number of times to attempt to match a pattern defined in a 
PCRE regular expression.

Match Recursion Limit 
State

Specifies whether to override

. You have the following 

options:

select 

 to use the value configured for 

select 

 to permit an unlimited number of recursions

select 

 to specify either a limit of 1 or greater for 

, or to specify 0 to completely disable PCRE recursions

Note that for 

 to be meaningful, it must be smaller than 

.

Match Recursion Limit

Specifies the number of recursions when evaluating a PCRE regular 
expression against the packet payload.