dos [-a | e [ATTACK_F][ATTACK_0] | d [ATTACK_F][ATTACK_0]]
S
S
y
y
n
n
t
t
a
a
x
x
D
D
e
e
s
s
c
c
r
r
i
i
p
p
t
t
i
i
o
o
n
n
Parameter Description
-V It means to view the configuration of DoS defense system.
-D It means to deactivate the DoS defense system.
-A It means to activate the DoS defense system.
-s It means to enable the defense function for a specific attack and set
its parameter(s).
ATTACK_F It means to specify the name of flooding attack(s) or portscan, e.g.,
synflood, udpflood, icmpflood, or postscan.
THRESHOLD It means the packet rate (packet/second) that a flooding attack will
be detected. Set a value larger than 20.
TIMEOUT It means the time (seconds) that a flooding attack will be blocked.
Set a value larger than 5.
-a It means to enable the defense function for all attacks listed in
ATTACK_0.
-e It means to enable defense function for a specific attack(s).
ATTACK_0 It means to specify a name of the following attacks: ip_option,
tcp_flag, land, teardrop, smurf, pingofdeath, traceroute,
icmp_frag, syn_frag, unknow_proto, fraggle.
-d It means to disable the defense function for a specific attack(s).
E
E
x
x
a
a
m
m
p
p
l
l
e
e
>dos –A
The Dos Defense system is Activated
>dos –s synflood 50 10
Synflood is enabled! Threshold=50 <pke/sec> timeout=10 <pke/sec>
T
T
e
e
l
l
n
n
e
e
t
t
C
C
o
o
m
m
m
m
a
a
n
n
d
d
:
:
e
e
x
x
i
i
t
t
Type this command will leave telnet window.
T
T
e
e
l
l
n
n
e
e
t
t
C
C
o
o
m
m
m
m
a
a
n
n
d
d
:
:
I
I
n
n
t
t
e
e
r
r
n
n
e
e
t
t
This command allows you to configure detailed settings for WAN connection.
S
S
y
y
n
n
t
t
a
a
x
x
internet [-<command> <parameter> | ... ]
S
S
y
y
n
n
t
t
a
a
x
x
D
D
e
e
s
s
c
c
r
r
i
i
p
p
t
t
i
i
o
o
n
n
Parameter Description
<command><parameter>|…] The available commands with parameters are listed below.
[…] means that you can type in several commands in one line.
-M n M means to set Internet Access Mode (Mandatory) and n means
different modes (represented by 0 – 3)
n=0: Offline
n=1: PPPoE
To Next Page
Loading...
