Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

How do I search for filters on the SMS?

    • Updated:
    • 24 Aug 2017
    • Product/Version:
    • TippingPoint SMS All
    • TippingPoint Virtual SMS
    • Platform:
Summary
When you search for and select a filter, you can review the settings and details for the filter. TippingPoint assesses each filter and assigns a category, severity, and recommended action. You can also view the filter name, and the dates the DV filter was distributed or last modified, and the name of the profile the filter is assigned to.
Details
Public

Procedure:

  1. Log in to the SMS from a client.

  2. From the top navigation pane, click Profiles. The Profiles screen displays.

  3. From the navigation pane on the left, click the + sign next to the Inspection Profiles to expand the category.

  4. Do one of the following:

    • For a global search across all listed profiles, select Global Search from the navigational menu.

    • For a standard search within a selected profile, select Search from the navigational menu.

  5. The Profiles - Search screen displays and is divided in to the following four areas:

    • Filter Criteria: criteria based on specific filter information, such as name, severity, state, or category.

    • Source Criteria: criteria based on filter source information, such as new or modified filters or package source.

    • Additional Criteria: criteria based on various filter information such as actions, exceptions, inheritance.

    • Filter Taxonomy Criteria: criteria based on taxonomy information such as classification, protocol, and platform.

    • Vulnerability Criteria: criteria based on CVE Id, and Bugtraq Id.

  6. For filter search criteria, click the arrow next to Filter Criteria and specify the appropriate information for the following items:

    • Filter Specific Information: Name, Description

    • Filter Severity: Critical, Major, Minor, Low

    • Filter Type: Select Security, Application

    • Filter Category: All, Exploits, Identity Theft, etc.

    • Control: Select Category and/or Filter

    • State: Select Enabled, Disabled and/or Type Specific for the state 

  7. To use the Filter Category criteria option:

    • Expand the appropriate category or categories:

    • Select a main category, such as Application Protection, to search on all items in that category or select individual items in one or more main categories.

  8. For source search criteria, click the arrow next to Source Criteria and specify the appropriate information for the following items:

    • New DV Filters: Searches the filters added from a Digital Vaccine update

    • Modified Filters: Searches the filters modified in the current profile

    • Digital Vaccine: Searches the filters that were added from Digital Vaccines

    • DV Toolkit: Searches custom filters that were generated from a Digital Vaccine Toolkit and then added

    • User: Searches user filters, such as Threshold, Advance DDoS, that were added

    • Auxiliary DV: Searches the filters that were added from Auxiliary Digital Vaccines

  9. For source additional criteria, click the arrow next to Additional Criteria and specify the appropriate information for the following items:

    • Action: Select Permit, Block, and/or Rate-Limit (cannot search by action and action set)

    • Action Set: Select a listed action set (cannot search by action and action set)

  10. To search exceptions, complete the desired criteria:

    • Filters: Select from the drop-down box

    • Name: Enter a filter name

    • Scr Addr(s): Enter source IP address or click the arrow to select a named IP address

    • Dst Addr(s): Enter source IP address or click the arrow to select a named IP address

  11. To search based on other additional criteria specify the following:

    • Lock: Select one or more lock status check boxes

    • Inheritance: Select one or more inherited settings check boxes

    • Comments: Specify comment keywords

  12. To search filter comments, enter keywords in the Filter Comment text box.

  13. For taxonomy search criteria, click the arrow next to Taxonomy Criteria and specify the appropriate information for the following items:

    • Select a Classification, such as SYN Flood Attack or Worm. You can use the Shift or Ctrl keys to select multiple entries.

    • Select a Protocol, such as AIM (IM) or BitTorrent. You can use the Shift or Ctrl keys to select multiple entries.

    • Select a Platform, such as MAC OS Client Application or Windows Client Application. You can use the Shift or Ctrl keys to select multiple entries.

  14. To reset criteria to the default settings, click Reset.

  15. Click Search. The results display in the Results list pane.

Reference: SMS User Guide

Premium
Internal
Rating:
Category:
Configure; Troubleshoot; Deploy
Solution Id:
TP000086374
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.