USG60W and flex 200 - V4.62 Insufficient privilege when disabling tcp-portscan from command line
Options
danyedinak
Posts: 49 Freshman Member
I have twenty routers to manage, so logging into the web GUI is a non-starter. I need command line functionality.
Just prior to PCI-DSS scans I need to temporarily disable the tcp-port scan to prevent it from being tripped by the scan (although, having whitelisted IPs would be better) and then re-enable after the scan is complete. From the command line (SSH from putty in windows or command line in Debian):
enable
configure terminal
idp anomaly ADP_PROFILE no scan-detection tcp-portscan activate
% Insufficient privilege
Same username CAN make the change via the web gui, which, again, does not help me solve this problem.
Just prior to PCI-DSS scans I need to temporarily disable the tcp-port scan to prevent it from being tripped by the scan (although, having whitelisted IPs would be better) and then re-enable after the scan is complete. From the command line (SSH from putty in windows or command line in Debian):
enable
configure terminal
idp anomaly ADP_PROFILE no scan-detection tcp-portscan activate
% Insufficient privilege
Same username CAN make the change via the web gui, which, again, does not help me solve this problem.
0
Comments
-
Update - entering as a subcommand solves the problem. However, this is still a bug, or the help (when hitting tab) should be changed to remove the option there. There's also a secondary issue with the spelling of anomaly (it's spelled as anomlay).
Router(config)# idp anomaly ADP_PROFILE
Router(config-idp-anomlay-profile-ADP_PROFILE)# no scan-detection tcp-portscan activate
0 -
Hi @danyedinak,
Thank you for your feedback.
For first issue, please refer to CLI guide. It's normal behavior. That commands need to execute in the sub-command mode.
For the typo error, we will fix this in the upcoming releases. Please kindly wait for upcoming releases.
Best regards1
Categories
- All Categories
- 383 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 76 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 209 Service & License
- 335 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 890 Nebula FAQ
- 415 Security FAQ
- 233 Switch FAQ
- 205 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 62 Security Highlight