sam_alert

Description This tool executes FW-1 SAM (Suspicious Activity Monitoring) actions according to information received through Standard input. This tool is for executing FW-1 SAM actions with the FW-1 User Defined alerts mechanism.

Syntax

sam_alert [-o] [-v] [-s <sam_server>] [-t <timeout>] [-f <fw_host1> <fw_host2>...] [-C] [-n|-i|-I -src|-dst|-any|-srv]

Parameter	Description
`-o`	Prints the input of this tool to the standard output (for pipes).
`-v`	Turns on verbose mode (of the `fw sam` command).
`-s <sam_server>`	The sam server to be contacted. Localhost is the default.
`-t <timeout>`	The time period, in seconds, for which the action will be enforced. The default is forever.
`-f <fw_host>`	Identifies the FireWalls to run the operation on. Default is "all FireWalls."
`-C`	Cancels the specified operation.
`-n`	Notify every time a connection that matches the specified criteria passes the Firewall.
`-i`	Inhibit connections that match the specified criteria.
`-I`	Inhibit connections that match the specified criteria and close all existing connections that match the criteria.
`-src`	Match the source address of connections.
`-dst`	Match the destination address of connections.
`-any`	Match either the source or destination address of the connection.
`-srv`	Match specific source, destination, protocol and service.