IP Commands
page 29-74 OmniSwitch 6250 CLI Reference Guide November 2009
ip dos scan threshold
Sets the threshold for the port scan value, at which a DoS attack is recorded.
ip dos scan threshold threshold_value
Syntax Definitions
threshold_value A numerical value representing the total acceptable penalty before a
DoS attack is noted. This value can be any non-negative integer.
Defaults
Platforms Supported
OmniSwitch 6250
Usage Guidelines
• If the total port scan penalty value exceeds this value, a port scan attack is recorded.
• The penalty value is incremented by recording TCP or UDP packets that are bound for open or closed
ports. Such packets are given a penalty value, which are added together. The commands for setting the
packet penalty value are the ip dos scan close-port-penalty, ip dos scan tcp open-port-penalty, and
ip dos scan udp open-port-penalty commands.
Examples
-> ip dos scan threshold 1200
Release History
Release 6.6.1; command was introduced.
parameter default
threshold_value 1000
To Next Page
Loading...
