Library Files

Configuring the FTP Server

Management Operations

Choose Defense > Public Settings > Library File. Manage library file.

Deploy	Click to deploy the selected library file to the device.
Import	Click . In the Import window, click upload, select the library file, and click OK. The signature database name must be in the IPS_H*.zip format. The IP location library file name must be in the location_sdb*.zip format. The IP reputation library file name must be in the IPRPU_H*.zip format. And the malicious URL library file must be in the CNC_H*.zip format. Imported library files are displayed in the library file list.
Export	Select a library file and click . In the displayed file download window, click Save to save the file locally or click Open to view the file.
Delete	Delete one IP address description: Click in the Operation column on the right of an IP address description to delete the description. Delete library file in batches: Select the check boxes of multiple library file and click above the list to delete the selected library file. Select the check box on the title bar and click above the list to delete all library file. NOTE: Only Undeployed library files can be directly deleted. If a library file has been successfully or partially deployed, it cannot be deleted. To delete a deployed library file, load another library file of the same type. The newly loaded library file overwrites the deployed one and is in Undeployed state. Then, you can delete this file.
Synchronize	Click . Download the latest library file from the secure cloud center to the ATIC management center. Ensure that the secure cloud center and ATIC management center are reachable. NOTE: NOTE: When the device can directly access the update center, configure security policies as follows: Set the source security zone to Local. Permit HTTP and FTP. HTTP is used by the AntiDDoS to interact with the security center, and FTP is used to connect to FTP control channels for downloading signature database files. Permit user-defined service traffic, with the protocol being TCP and destination port ranging from 10001 to 10005 (for connecting to FTP data channels). When the device accesses the update center through the proxy server, configure security policies as follows: Set the source security zone to Local. Permit HTTP so that the AntiDDoS can interact with the proxy server. NOTE: Before updating a signature database, check whether the space available in the device root directory is sufficient. The space required for updating a signature database is as follows: IP reputation library (IPRPU): The space required is no smaller than 80 MB. Intrusion prevention signature database (IPS): The space required is no smaller than 30 MB.

Manually Updating Signature Database Files

1. Download update files.
   1. Log in to Huawei security platform (sec.huawei.com) and choose Signature Update > Signature Update.
   2. Select the corresponding product type, series, name, and version.
      
      
      

   3. Click the tab of the signature database to be updated.
   4. Download the signature database file.

      Click the download icon on the right and download the signature database file on the detail information page prompted. The signature database files are in ZIP format. You can upload them directly to the ATIC without decompressing them.

      Certain signature database files provide auxiliary files that further describe signature database or version changes for your reference.

2. Choose Defense > Public Settings > Library File Click .
3. On the Import page, click Browse..., select the latest downloaded signature database file, and click OK. The imported signature database file is displayed in the signature database file list.
4. Click to deploy the selected database file to the AntiDDoS.
5. If the deployment succeeds, the Deploy Status is Deploy succeeded.