The rule anti-printscreen command configures an anti-snapshot check rule. If the FW detects that a program matching the rule is running on a terminal, the terminal fails to access the network.
The undo rule anti-printscreen command deletes an anti-snapshot check rule.
rule rule-name anti-printscreen { md5 md5-value | sha256 sha256-value | win-name win-name [ exact-match ] }
undo rule rule-name anti-printscreen { md5 md5-value | sha256 sha256-value | win-name win-name }
| Parameter | Description | Value |
|---|---|---|
rule-name |
Specifies the name of a rule. |
The value is a string of 1 to 63 case-sensitive characters. |
md5 md5-value |
Specifies an MD5 value for the snapshot program. |
The value is a string of 32 case-insensitive characters, which can be digits (0 to 9) or letters (a to f or A to F). |
sha256 sha256-value |
Specifies an SHA256 value for the snapshot program. |
The value is a string of 64 case-insensitive characters, which can be digits (0 to 9) or letters (a to f or A to F). |
win-name win-name [ exact-match ] |
Specifies a window name for the snapshot program. If you choose exact-match, the window for the snapshot program will be closed if the window title is the same as win-name. |
The value is a string of 1 to 127 case-sensitive characters. |
Before running the rule anti-printscreen command, run the rule type command to add a rule for a host check policy.
A program or file may not be identified by name because the name of the program or file is changeable. SHA256 or MD5 is recommended. An SHA256 or MD5 value can uniquely identify a program or file. A rule can have a maximum of five verification values.
# Configure an anti-snapshot check rule to prevent the program with the window name of hypersnap from running.
<sysname> system-view [sysname] v-gateway abc [sysname-abc] hostchecker [sysname-abc-hostchecker] eps-policy policy1 [sysname-abc-hostchecker-policy1] rule rule1 type anti-printscreen [sysname-abc-hostchecker-policy1] rule rule1 anti-printscreen win-name hypersnap