Procedure:

From the top navigation pane, click Profiles. The Profiles screen displays.

From the navigation pane on the left, click the + sign next to the Inspection Profiles to expand the category.

Do one of the following:

For a global search across all listed profiles, select Global Search from the navigational menu.
For a standard search within a selected profile, select Search from the navigational menu.

The Profiles - Search screen displays and is divided into the following four areas:

Filter Criteria: criteria based on specific filter information, such as name, severity, state, or category.
Source Criteria: criteria based on filter source information, such as new or modified filters or package source.
Additional Criteria: criteria based on various filter information such as actions, exceptions, and inheritance.
Filter Taxonomy Criteria: criteria based on taxonomy information such as classification, protocol, and platform.
Vulnerability Criteria: criteria based on CVE Id, and Bugtraq Id.

For filter search criteria, click the arrow next to Filter Criteria and specify the appropriate information for the following items:

Filter Specific Information: Name, Description
Filter Severity: Critical, Major, Minor, Low
Filter Type: Select Security, Application
Filter Category: All, Exploits, Identity Theft, etc.
Control: Select Category and/or Filter
State: Select Enabled, Disabled, and/or Type Specific for the state

To use the Filter Category criteria option:

Expand the appropriate category or categories:
Select a main category, such as Application Protection, to search for all items in that category or select individual items in one or more main categories.

For source search criteria, click the arrow next to Source Criteria and specify the appropriate information for the following items:

New DV Filters: Searches the filters added from a Digital Vaccine update
Modified Filters: Searches the filters modified in the current profile
Digital Vaccine: Searches the filters that were added from Digital Vaccines
DV Toolkit: Searches custom filters that were generated from a Digital Vaccine Toolkit and then added
User: Searches user filters, such as Threshold and Advance DDoS, that were added
Auxiliary DV: Searches the filters that were added from Auxiliary Digital Vaccines

For source additional criteria, click the arrow next to Additional Criteria and specify the appropriate information for the following items:

Action: Select Permit, Block, and/or Rate-Limit (cannot search by action and action set)
Action Set: Select a listed action set (cannot search by action and action set)

To search for exceptions, complete the desired criteria:

Filters: Select from the drop-down box
Name: Enter a filter name
Scr Addr(s): Enter the source IP address or click the arrow to select a named IP address
Dst Addr(s): Enter the source IP address or click the arrow to select a named IP address

To search based on other additional criteria, specify the following:

Lock: Select one or more lock status checkboxes
Inheritance: Select one or more inherited settings checkboxes
Comments: Specify comment keywords

To search filter comments, enter keywords in the Filter Comment text box.

For taxonomy search criteria, click the arrow next to Taxonomy Criteria and specify the appropriate information for the following items:

Select a Classification, such as SYN Flood Attack or Worm. You can use the Shift or Ctrl keys to select multiple entries.
Select a Protocol, such as AIM (IM) or BitTorrent. You can use the Shift or Ctrl keys to select multiple entries.
Select a Platform, such as MAC OS Client Application or Windows Client Application. You can use the Shift or Ctrl keys to select multiple entries.

To reset the criteria to the default settings, click Reset.

Click Search. The results are displayed in the Results list pane.

How do I search for filters on the SMS?

Product / Version includes:

TippingPoint SMSAll

Last updated: 2024/08/06

Solution ID: KA-0017371

Category: Configure , Troubleshoot , Deploy

Summary

When you search for and select a filter, you can review its settings and details. TippingPoint assesses each filter and assigns a category, severity, and recommended action. You can also view the filter name, the dates the DV filter was distributed or last modified, and the name of the profile the filter is assigned to.

Procedure:

Log in to the SMS from a client.
From the top navigation pane, click Profiles. The Profiles screen displays.
From the navigation pane on the left, click the + sign next to the Inspection Profiles to expand the category.
Do one of the following:
- For a global search across all listed profiles, select Global Search from the navigational menu.
- For a standard search within a selected profile, select Search from the navigational menu.
The Profiles - Search screen displays and is divided into the following four areas:
- Filter Criteria: criteria based on specific filter information, such as name, severity, state, or category.
- Source Criteria: criteria based on filter source information, such as new or modified filters or package source.
- Additional Criteria: criteria based on various filter information such as actions, exceptions, and inheritance.
- Filter Taxonomy Criteria: criteria based on taxonomy information such as classification, protocol, and platform.
- Vulnerability Criteria: criteria based on CVE Id, and Bugtraq Id.
For filter search criteria, click the arrow next to Filter Criteria and specify the appropriate information for the following items:
- Filter Specific Information: Name, Description
- Filter Severity: Critical, Major, Minor, Low
- Filter Type: Select Security, Application
- Filter Category: All, Exploits, Identity Theft, etc.
- Control: Select Category and/or Filter
- State: Select Enabled, Disabled, and/or Type Specific for the state
To use the Filter Category criteria option:
- Expand the appropriate category or categories:
- Select a main category, such as Application Protection, to search for all items in that category or select individual items in one or more main categories.
For source search criteria, click the arrow next to Source Criteria and specify the appropriate information for the following items:
- New DV Filters: Searches the filters added from a Digital Vaccine update
- Modified Filters: Searches the filters modified in the current profile
- Digital Vaccine: Searches the filters that were added from Digital Vaccines
- DV Toolkit: Searches custom filters that were generated from a Digital Vaccine Toolkit and then added
- User: Searches user filters, such as Threshold and Advance DDoS, that were added
- Auxiliary DV: Searches the filters that were added from Auxiliary Digital Vaccines
For source additional criteria, click the arrow next to Additional Criteria and specify the appropriate information for the following items:
- Action: Select Permit, Block, and/or Rate-Limit (cannot search by action and action set)
- Action Set: Select a listed action set (cannot search by action and action set)
To search for exceptions, complete the desired criteria:
- Filters: Select from the drop-down box
- Name: Enter a filter name
- Scr Addr(s): Enter the source IP address or click the arrow to select a named IP address
- Dst Addr(s): Enter the source IP address or click the arrow to select a named IP address
To search based on other additional criteria, specify the following:
- Lock: Select one or more lock status checkboxes
- Inheritance: Select one or more inherited settings checkboxes
- Comments: Specify comment keywords
To search filter comments, enter keywords in the Filter Comment text box.
For taxonomy search criteria, click the arrow next to Taxonomy Criteria and specify the appropriate information for the following items:
- Select a Classification, such as SYN Flood Attack or Worm. You can use the Shift or Ctrl keys to select multiple entries.
- Select a Protocol, such as AIM (IM) or BitTorrent. You can use the Shift or Ctrl keys to select multiple entries.
- Select a Platform, such as MAC OS Client Application or Windows Client Application. You can use the Shift or Ctrl keys to select multiple entries.
To reset the criteria to the default settings, click Reset.
Click Search. The results are displayed in the Results list pane.

Reference: SMS User Guide

Was this article helpful?

Featured

Automation Center

Education Portal

Online Help Center

Service Status

TrendConnect

How do I search for filters on the SMS?

Procedure:

How do I search for filters on the SMS?

Product / Version includes:

Summary

Procedure: