Configuring Security
Denial of Service Prevention
Cisco Small Business 300 Series Managed Switch Administration Guide 226
16
To enter Denial of Service Prevention global settings:
STEP 1 Click Security > Denial of Service Prevention > Security Suite Settings. The
Security Suite Settings displays.
STEP 2 Select DoS Prevention to enable the Denial of Service Prevention feature.
• Disable—Disable the feature.
• System-Level Prevention—prevents attacks from Stacheldraht
Distribution, Invasor Trojan, and Back Orifice Trojan.
• Interface-Level Prevention—prevents Martian Address, SYN, ICMP, and IP
Fragments attacks.
STEP 3 If System-Level Prevention or System-Level and Interface-Level Prevention is
selected, enable one or more of the following DoS Prevention options:
• Stacheldraht Distribution—Discards TCP packets with source TCP port
equal to 16660.
• Invasor Trojan—Discards TCP packets with destination TCP port equal to
2140 and source TCP port equal to 1024.
• Back Office Trojan—Discards UDP packets with destination UDP port
equal to 31337 and source UDP port equal to 1024.
STEP 4 Click Apply. The Denial of Service prevention Security Suite settings are defined,
and the switch is updated.
STEP 5 If Interface-Level Prevention is selected, click the appropriate Edit button to
configure the desired prevention.
Defining Martian Addresses
The
Martian Addresses Page
enables entering those addresses that indicate an
attack if they are seen on the network.
The switch supports a set of reserved Martian addresses that are illegal from the
view point of the IP protocol. The supported reserved Martian addresses are:
To Next Page
Loading...
