C613-50631-01 Rev A Command Reference for IE340 Series 2037
AlliedWare Plus™ Operating System - Version 5.5.3-0.x
IPV4 SOFTWARE ACCESS CONTROL LIST (ACL) COMMANDS
DOS
dos
Overview Use this command to configure Denial-of-Service (DoS) features for a port. Six
different DoS attacks can be detected: IP Options, Land, Ping-of-Death, Smurf,
Synflood and Teardrop.
When the attack is detected, three different actions are available:
• Shutdown the port for one minute
• Cause an SNMP trap.
• Send traffic to the mirror port
Syntax
dos {ipoptions|land|ping-of-death|smurf broadcast
<ip-address>|synflood|teardrop} action {shutdown|trap|mirror}
Mode Interface Configuration for a switch port interface.
Default DoS attack detection is not configured by default on any switch port interface.
Usage notes See the below table for more information about the DoS attacks recognized by this
command:
Parameter Description
dos Denial-Of-Service.
ipoptions IP Options attack.
land Land attack.
ping-of-death Large ping attack.
smurf Ping to broadcast address.
broadcast Broadcast.
<ip-address> Local IP Broadcast Address.
synflood SYN flood attack.
teardrop IP fragmentation attack.
action Action.
shutdown Shutdown port.
trap Trap to SNMP.
mirror Send packets to mirror port.
To Next Page
Loading...
Need help?
General
