Chapter 12
| Security Measures
DoS Protection
– 335 –
Figure 216: Showing Statistics for 802.1X Port Supplicant
DoS Protection
Use the Security > DoS Protection page to protect against denial-of-service (DoS)
attacks. A DoS attack is an attempt to block the services provided by a computer or
network resource. This kind of attack tries to prevent an Internet site or service from
functioning efficiently or at all. In general, DoS attacks are implemented by either
forcing the target to reset, to consume most of its resources so that it can no longer
provide its intended service, or to obstruct the communication media between the
intended users and the target so that they can no longer communicate adequately.
This section describes how to protect against DoS attacks.
Command Usage
â—† All DoS functions are disabled by default.
Parameters
These parameters are displayed:
Global Protection
◆ DoS Protection – Enables DoS protection globally on the switch.
Protection for IPv4
◆ Invalid IP Address – Protects against attacks in which the source IP address
and the destination IP address are the same.
◆ Invalid Header Length – Protects against attacks which send IP packets with
an incorrect header length or IP data length. Such packets are not allowed by
the system, but their abundant number can cause computer crashes and other
system errors.
To Next Page
Loading...
Need help?
General
