Cisco SCE2020-4XGBE-SM - Attack Filtering and Attack Detection; Introduction

512 pages

Save Page as PDF

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

CHAPTER

11-1

Cisco SCE 2000 and SCE 1000 Software Configuration Guide

OL-7827-12

11

Identifying and Preventing

Distributed-Denial-Of-Service Attacks

Revised: June 15, 2009, OL-7827-12

Introduction

This chapter describes the ability of the SCE platform to identify and prevent DDoS attacks, and the

various procedures for configuring and monitoring the Attack Filter Module.

• Attack Filtering and Attack Detection, page 11-1

• Configuring Attack Detectors, page 11-7

• Configuring Subscriber Notifications, page 11-18

• Preventing and Forcing Attack Detection, page 11-19

• Monitoring Attack Filtering, page 11-21

Attack Filtering and Attack Detection

• Attack Filtering, page 11-2

• Specific Attack Filtering, page 11-2

• Attack Detection, page 11-3

• Attack Detection Thresholds, page 11-4

• Attack Handling, page 11-5

• Hardware Filtering, page 11-6

Table of Contents

Related product manuals

Cisco SCE8000 GBE

Preview: Cisco SNS 3515

Preview: Cisco SE-CL-L3

Cisco UCS S3260 M5

Preview: Cisco ONS 15454 SONET

Cisco ONS 15454 SONET

Preview: Cisco SNS 3400 Series

Cisco SNS 3400 Series

Cisco Secure Firewall 3100

Preview: TelePresence Video Communication Server CE500

TelePresence Video Communication Server CE500

Preview: Cisco UCS

Preview: Cisco UCS C240

Preview: Cisco UCS C220 M4

Cisco UCS C220 M4

Preview: Cisco TelePresence

Cisco TelePresence