Buy or Renew
Buy or Renew
NOTICE: The community will be in READ-ONLY Sept. 6 – 9 to add Umbrella release notes and announcements. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
273
Views
0
Helpful
1
Replies

How to show signature definition delta

kst.amand
Level 1
Level 1

‎08-17-2007 08:17 AM - edited ‎03-10-2019 03:45 AM

Is there a way to show just the modifications / tuning changes made to a default downloaded signature set?

Background - I've downloaded a signature set, tuned a specific signature-id to a deny event-action, and from what I understand changes are recorded in a sigdef-delta.xml file.

What I'm hoping to be able to do is issue a command that allows us just to identify the detlas in order to avoid a bunch of documentation.

Any help?

Labels:
0 Helpful
1 Reply 1

attmidsteam
Level 1
Level 1

‎08-22-2007 07:52 AM

If you type 'sh conf' on the CLI on a modern 5.x sensor you will only get the configuration differences (such as different event-actions or different summary keys). The only alternative is to parse out the XML (found on the underlying OS) which is a pain to do (since the XML format isn't completely consistent).

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card