Command Line Interface Reference Guide > The SLB Configuration Menu
/cfg/slb/virt/service/basic-slb/eaaf
ERT Active Attackers Feed Menu
ERT Active Attackers Feed is a security feature that protects Alteon from known malicious IP addresses.
Using a dynamic list of IP addresses, the Alteon security administrator can easily and effectively stop network-based IP threats that are targeting the network.
The administrator can define whether to allow, block, or alert malicious IP addresses based on region, category (Tor Exit Nodes or Malicious IPs), and risk severity level.
An ERT Active Attackers Feed license (Secure package + Secure subscription) is required for the ERT Active Attackers Feed functionality.
You can enable ERT Active Attackers Feed for each vADC from the ADC-VX interface.
Note: Applying ERT Active Attackers Feed to an vADC requires a vADC reboot.
 
[ERT Active Attackers Feed Menu]
eaaf     - Enable/disable ERT Active Attackers Feed service
cdnprox - Enable/disable ERT Active Attackers Feed in CDN deployment
cur - Display current service ERT Active Attackers Feed configuration
 
ERT Active Attackers Feed Options (/cfg/slb/virt/service/slb-basic/eaaf) 
Command Syntax and Usage
eaaf disabled|enabled
 
Specifies whether to enable or disable the ERT Active Attackers Feed feature for this virtual service.
Default: enable
cdnprox disable|enable
 
Available for HTTP/S services only.
Specifies whether to look for the real client IP address in the X-FF field in the HTTP header.
Enable this option when Alteon is placed behind a content delivery network (CDN) or a proxy.
Default: disabled
cur
 
Displays the current ERT Active Attackers Feed configuration for the virtual service.