User Guide
OmniAccess SafeGuard OS Administration Guide
380
Chapter 10: Detecting and Isolating Malware Security Threats
copy tftp://ip/{filepath/}file [malware-app-categories | malware-
profile
]
The following example copies a malware-app-categorization file from the TFTP server:
(SafeGuardOS) #
(SafeGuardOS) # copy tftp://180.29.52.20/mwareapp malware-app-categories
(SafeGuardOS) #
Clearing Malware Configurations
SafeGuard OS provides clear commands to change the malware state or to remove an IP
address from the white-list.
To clear the malware state of both host or host application infections use the clear
malware command. This Privileged Exec command clears the state of the specified host
(IP or MAC) and restores network access, as determined by the policy for the host.
clear malware [[ip-address ip]| [mac mac-address]| all]
Syntax Description ip Specifies the IP address of the TFTP
server
filepath (Optional) Specifies the directory path
to the file.
file Specifies the filename of the key file.
malware-app-
categories
Copies the app categorization
definition file.
malware-profile Copies the malware profile definition
file.
Syntax Description ip Clears the state for the infected host or host
application at this IP address.
mac-address Clears the state for the infected host or host
application at this MAC address. MAC
addresses may be specified in any of the
following formats:
■ aa:bb:cc:dd:ee:ff
■ aabb:ccdd:eeff
■ aa-bb-cc-dd-ee-ff
■ aabb.ccdd.eeff
■ aabbccddeeff
all Clears all malware states.