Skip to content

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/nsg/sophos-firewall/18.5/Help/en-us/webhelp/onlinehelp/index.html?contextId=bdf44399-dd28-4e36-b6d0-a4e8b2842f96

Find the number of IPS signatures

You can find the number of default and custom IPS signatures on Sophos Firewall.

You can do this from the web admin console or the CLI.

Web admin console

  1. Go to Intrusion prevention > IPS policies.

  2. Click a policy you can delete, for example, dmzpolicy.

    You can only see the signature list when you're adding an IPS policy rule, and you can only add rules to policies you can delete.

  3. Click Add.

    Add an IPS policy rule

  4. Under Add IPS policy rules, make sure Select all is selected for the signatures.

    Select all IPS signatures

  5. Scroll down to the bottom of the list. You'll see the list of total signatures above Action.

    Add an IPS policy rule

CLI

  1. Enter 5 for Device management.
  2. Enter 3 for Advanced shell.

  3. Enter the following command to see the number of IPS signatures available by default:

    psql -U nobody -d signature -p 5434 -c "select count (*) from tblidprules;"

    Here's an example:

    SF01V_SO01_SFOS 19.0.1 MR1-1-Build387# psql -U nobody -d signature -p 5434 -c "select count (*) from tblidprules;"
count
-------
 28623
(1 row)

  4. Enter the following command to see the number of custom IPS signatures:

    psql -U nobody -d corporate -c "select count (*) from tblidpcustomsignature;"

    Here's an example:

    SF01V_SO01_SFOS 19.0.1 MR1-1-Build387# psql -U nobody -d corporate -c "select count (*) from tblidpcustomsignature;"
count
-------
     1
(1 row)