Alcatel-Lucent 6850-48 参考指南
Network Security Commands
page 61-18
OmniSwitch CLI Reference Guide
September 2009
show netsec operation
Displays the network security operational conditions.
show netsec [group {grp_name | all} | port slot/port[-port2]] [anomaly {anomaly_name | all}] operation
Syntax Definitions
grp_name
The name of the port-group (up to 16 characters).
group all
Specifies all the monitoring-groups.
slot/port1
The slot number for the module and the physical port number on that
module (e.g., 3/1 specifies port 1 on slot 3).
module (e.g., 3/1 specifies port 1 on slot 3).
-port2
The last port number in a range of ports that you want to configure on
the same slot (e.g, 3/1-4 specifies ports 1-4 on slot 3).
the same slot (e.g, 3/1-4 specifies ports 1-4 on slot 3).
anomaly_name
The type of the anomaly.
anomaly all
Monitors all anomalies.
Defaults
By default, the network security operational condition of all the anomalies is displayed.
Platforms Supported
OmniSwitch 6850, 6855, 9000, 9000E
Usage Guidelines
To display the network security operational condition for a particular monitoring-group, specify only the
group parameter.
group parameter.
Examples
-> show netsec operation
Port-Range
Group Anomaly S L T Q Per Cnt Sen
-------------+------------------+----+---+---+----+-------+----------+----------
h arp-addr-scan E E D D 30 30 50
h arp-flood E E D D 30 90 50
h arp-failure E E D D 30 6 50
h icmp-addr-scan E E D D 30 30 50
h icmp-flood E E D D 30 90 50
h icmp-unreachable E E D D 30 20 50
h tcp-port-scan E E D D 30 20 50
h tcp-addr-scan E E D D 30 30 50
h syn-flood E E D D 30 90 50
h syn-failure E E D D 30 10 50
h syn-ack-scan E E D D 30 2 50
h fin-scan E E D D 30 6 50
h fin-ack-diff E E D D 30 5 50
h rst-count E E D D 30 50 50