Configuring Device Security
Defining DoS Prevention
ESW 500 Series Switches Administration Guide 170
5
STEP 4 Click Apply. The ACL binding is defined, and the device is updated.
Defining DoS Prevention
Denial of Service
(DOS) increases network security by preventing packets with
invalid IP addresses from entering the network. DoS eliminates packets from
malicious networks which can compromise a network’s stability.
The device provides a Security Suite that allows administrators to match, discard,
and redirect packets based on packet header values. Packets which are
redirected are analyzed for viruses and Trojans.
DoS enables network managers to:
• Deny packets that contain reserved IP addresses
• Prevent TCP connections from a specific interface
• Discard echo requests from a specific interface
• Discard IP fragmented packets from a specific interface
The DoS Prevention section contains the following pages:
• DoS Global Settings
• Defining Martian Addresses
DoS Global Settings
The
Global Settings Page
allows network managers to enable and define global
DoS attack prevention parameters on the device. To open the
Global Settings
Page
:
To Next Page
Loading...
