Filter and Firewall
Left running head:
Chapter name (automatic)
716
Beta Beta
OmniAccess 5740 Unified Services Gateway CLI Command Reference Guide
Alcatel-Lucent
ICMP-PING-FLOOD
icmp-ping-flood [threshold <1-4294967295> <1-4294967295>]
DESCRIPTION
This command is entered in the Firewall-Attack Sub Configuration Mode.
A perpetrator sends a large amount of ICMP echo (ping) traffic at IP broadcast
addresses, all of it having a spoofed source address of a victim. If the routing
device delivering traffic to the broadcast addresses, performs the IP broadcast to
another broadcast function. Most hosts on that IP network will take the ICMP echo
request and reply to it with an echo reply each, and multiply the traffic by the
number of hosts responding.To secure system from this kind of ping flooding, this
command is included in the default attack prevention list.
PARAMETERS
DEFAULT VALUE
The default is 100 packets in 1000 milliseconds.
EXAMPLE
ALU(config-firewall-attack-A1)# icmp-ping-flood threshold 20 7
Parameter Description
threshold Threshold limit set.
<1-4294967295> <1-4294967295> Number of packets permissible within a
defined interval.
To Next Page
Loading...
Need help?
General
