6.2.2.8. monitoring-engine

6.2.2.8.1. Introduction

The monitoring-engine command of the set subgroup enables applying an advanced configuration for the GCap sensor detection engine.

Note

If the number of signatures loaded by Sigflow is too large, the timeout value must be adjusted.

6.2.2.8.2. Prerequisites

User: setup
Dependencies: the detection engine is switched off

6.2.2.8.3. Command

To change the grace period when starting the engine: set monitoring-engine start-timeout SECOND.
To change the grace period when the engine is stopped: set monitoring-engine stop-timeout SECOND.
To enable or disable the check of the controls: set monitoring-engine {disable-sanity-checks|enable-sanity-checks}.
If the sanity-checks option is set to enable, the detection engine starts only after verifying that at least one monx capture interface has been activated and that a cable is connected.

6.2.2.8.4. Example of changing the grace period to 600 seconds when starting the engine

To change the grace period to 600 seconds when starting the engine:
- Enter the following command.
```
(gcap-cli) set monitoring-engine start-timeout 600
```
- Validate.
To check the value modification:
- Enter the following command.
```
(gcap-cli) show monitoring-engine start-timeout
```
- Validate.
  The system displays the current value.
```
Monitoring Engine Options:
start timeout: 600s
```

6.2.2.8.5. Example of changing the grace period on engine shutdown to 600 seconds

To change the grace period to 600 seconds when the engine is stopped:
- Enter the following command.
```
(gcap-cli) set monitoring-engine stop-timeout 600
```
- Validate.
To check the value modification:
- Enter the following command.
```
(gcap-cli) show monitoring-engine stop-timeout
```

Validate.
The system displays the current value.

Monitoring Engine Options:
Stop timeout: 600s

6.2.2.8.6. Example of disabling the capture interface verification

To disable the capture interface verification:
- Enter the following command.
```
(gcap-cli) set monitoring-engine disable-sanity-checks
```
- Validate.

To check the value modification:

Enter the following command.

(gcap-cli) show monitoring-engine sanity-checks

Validate.
The system displays the current value.

Monitoring Engine Options:
Sanity checks disabled

6.2.2.8.7. Example of enabling the capture interface verification

To enable the capture interface verification:
- Enter the following command.
```
(gcap-cli) set monitoring-engine enable-sanity-checks
```
- Validate.

To check the value modification:

Enter the following command.

(gcap-cli) show monitoring-engine sanity-checks

Validate.
The system displays the current value.

Monitoring Engine Options:
Sanity checks enabled