Cisco Cisco Firepower Management Center 4000

When enabled, validates the checksums contained in DNP3 link layer frames. Frames with invalid 
checksums are ignored.

You can enable rule 145:1 to generate events when invalid checksums are detected.

Admin/Intrusion Admin

Select 

The Intrusion Policy page appears.

Click the edit icon (

) next to the policy you want to edit.

If you have unsaved changes in another policy, click 

 to discard those changes and continue. See 

 for information on saving unsaved changes in another 

policy.

The Policy Information page appears.

Click 

 in the navigation panel on the left.

The Advanced Settings page appears.

You have two choices, depending on whether 

 under SCADA Preprocessors is enabled:

If the configuration is enabled, click 

.

If the configuration is disabled, click 

, then click 

.

The DNP3 Configuration page appears.

Optionally, modify the 

 that the preprocessor inspects for DNP3 traffic. You can specify an integer 

from 0 to 65535. Use commas to separate multiple ports.

Optionally, select or clear the 

 check box to specify whether to validate the checksums 

contained in DNP3 link layer frames and ignore frames with invalid checksums.

Optionally, click 

 at the top of the page to display rules associated 

with individual options.

Click 

 to return to the DNP3 Configuration page.

Save your policy, continue editing, discard your changes, revert to the default configuration settings in 
the base policy, or exit while leaving your changes in the system cache. See the 

 table for more information.