FAQ-How does NE80 configure the anti-virus control list

Publication Date:  2012-07-27 Views:  160 Downloads:  0
Issue Description
Q:How does NE80 configure the anti-virus control list?
Alarm Information

Null

Handling Process
A:
Configure according to the following three steps:
1.configure the virus interface which will be filtered:
rule-map r1 tcp any any equal 135
rule-map r2 udp any any equal 135
rule-map r3 tcp any any equal 139 
rule-map r4 udp any any equal 139
rule-map r5 tcp any any equal 445
rule-map r6 udp any any equal 445
rule-map r7 tcp any any equal 539
rule-map r8 udp any any equal 539
rule-map r9 tcp any any equal 593
rule-map r10 udp any any equal 593
rule-map r11 udp any any equal 1434
rule-map r12 tcp any any equal 4444
rule-map r13 tcp any any equal 5554
rule-map r14 tcp any any equal 9995
rule-map r15 tcp any any equal 9996
rule-map r16 ip any any 
2.configure the access rule of EACL:
eacl a1 r1 deny
eacl a1 r2 deny
eacl a1 r3 deny
eacl a1 r4 deny
eacl a1 r5 deny
eacl a1 r6 deny
eacl a1 r7 deny
eacl a1 r8 deny
eacl a1 r9 deny
eacl a1 r10 deny
eacl a1 r11 deny
eacl a1 r12 deny
eacl a1 r13 deny
eacl a1 r14 deny
eacl a1 r15 deny
eacl a1 r16 permit
3.allocate at the interface:
interface GigabitEthernet1/0/0
access-group eacl a1
Root Cause

Null

Suggestions

Null

END