Skip to content
Was this article helpful?

contentInspection-profile

The following operations can be performed on "contentInspection-profile":

add| rm| set| unset| show|

add contentInspection profile

Adds ContentInspection profile to the NetScaler appliance.

Synopsis

add contentInspection profile <name> -type ( InlineInspection | Mirror ) [-ingressInterface <interface_name> [-ingressVlan <positive_integer>]] ((-egressInterface <interface_name> [-egressVlan <positive_integer>]) | -ipTunnel <string>)

Arguments

name

Name of a ContentInspection profile. Must begin with a letter, number, or the underscore (_) character. Other characters allowed, after the first character, are the hyphen (-), period (.), hash (#), space ( ), at (@), colon (:), and equal (=) characters. The name of a IPS profile cannot be changed after it is created.

CLI Users: If the name includes one or more spaces, enclose the name in double or single quotation marks (for example, "my ips profile" or 'my ips profile').

type

Type of ContentInspection profile. Following types are available to configure: INLINEINSPECTION : To inspect the packets/requests using IPS. MIRROR : To forward cloned packets.

Possible values: InlineInspection, Mirror

ingressInterface

Ingress interface for CI profile.It is a mandatory argument while creating an ContentInspection profile of IPS type.

ingressVlan

Ingress Vlan for CI Minimum value: 0

egressInterface

Egress interface for CI profile.It is a mandatory argument while creating an ContentInspection profile of type INLINEINSPECTION or MIRROR.

ipTunnel

IP Tunnel for CI profile. It is used while creating a ContentInspection profile of type MIRROR when the IDS device is in a different network

egressVlan

Egress Vlan for CI Minimum value: 0

Example

add contentinspectionprofile ips_profile1 -type InlineInspection -ingressinterface "1/2" -egressinterface "1/4"

rm contentInspection profile

Removes contentinspection profile.

Synopsis

rm contentInspection profile <name>

Arguments

name

Name of a ContentInspection profile. Must begin with a letter, number, or the underscore (_) character. Other characters allowed, after the first character, are the hyphen (-), period (.), hash (#), space ( ), at (@), colon (:), and equal (=) characters. The name of a IPS profile cannot be changed after it is created.

CLI Users: If the name includes one or more spaces, enclose the name in double or single quotation marks (for example, "my ips profile" or 'my ips profile').

Example

rm contentinspectionprofile <profile-name>

set contentInspection profile

Modifies the attributes of contentinspection profile

Synopsis

set contentInspection profile <name> [-egressInterface <interface_name>] [-ingressInterface <interface_name>] [-egressVlan <positive_integer>] [-ingressVlan <positive_integer>] [-ipTunnel <string>]

Arguments

name

Name of a ContentInspection profile. Must begin with a letter, number, or the underscore (_) character. Other characters allowed, after the first character, are the hyphen (-), period (.), hash (#), space ( ), at (@), colon (:), and equal (=) characters. The name of a IPS profile cannot be changed after it is created.

CLI Users: If the name includes one or more spaces, enclose the name in double or single quotation marks (for example, "my ips profile" or 'my ips profile').

egressInterface

Egress interface for CI profile.It is a mandatory argument while creating an ContentInspection profile of type INLINEINSPECTION or MIRROR.

ingressInterface

Ingress interface for CI profile.It is a mandatory argument while creating an ContentInspection profile of IPS type.

egressVlan

Egress Vlan for CI Minimum value: 0

ingressVlan

Ingress Vlan for CI Minimum value: 0

ipTunnel

IP Tunnel for CI profile. It is used while creating a ContentInspection profile of type MIRROR when the IDS device is in a different network

Example

set contentinspectionprofile <profile-name> -ingressinterface "1/3"

unset contentInspection profile

Use this command to remove contentInspection profile settings.Refer to the set contentInspection profile command for meanings of the arguments.

Synopsis

unset contentInspection profile <name> [-egressVlan] [-ingressVlan]

show contentInspection profile

Displays contentinspection profile/s configured on netscaler

Synopsis

show contentInspection profile [<name>]

Arguments

name

Name of the contentinspection profile to be displayed

Output

type

Type of ContentInspection profile. Following types are available to configure: INLINEINSPECTION : To inspect the packets/requests using IPS. MIRROR : To forward cloned packets.

egressInterface

Egress interface for CI profile.It is a mandatory argument while creating an ContentInspection profile of type INLINEINSPECTION or MIRROR.

ingressInterface

Ingress interface for CI profile.It is a mandatory argument while creating an ContentInspection profile of IPS type.

egressVlan

Egress Vlan for CI

ingressVlan

Ingress Vlan for CI

ipTunnel

IP Tunnel for CI profile. It is used while creating a ContentInspection profile of type MIRROR when the IDS device is in a different network

devno

count

stateflag

Example

show contentinspection profile [profile-name]

Was this article helpful?