EasyManua.ls Logo

Edge-Core ECS4210-12P User Manual

Edge-Core ECS4210-12P
712 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #304 background imageLoading...
Page #304 background image
Chapter 8
| General Security Measures
Denial of Service Protection
– 304 –
dos-protection tcp
syn-ack-psh-block
This command protects against attacks in which a TCP SYN/ACK/PSH message
sequence is used to cause problems for some operating systems which do not
acknowledge this as a valid sequence.
Syntax
[no] dos-protection syn-ack-psh-block
Default Setting
Disabled
Command Mode
Global Configuration
Command Usage
In these packets, SYN=1, ACK=1 and PSH=1.
Example
Console(config)#dos-protection syn-ack-psh-block
Console(config)#
dos-protection tcp
syn-fin-scan
This command protects against TCP SYN/FIN-scan attacks in which a TCP SYN/FIN
scan message is used to identify listening TCP ports. The scan uses a series of
strangely configured TCP packets which contain SYN (synchronize) and FIN (finish)
flags. If the target's TCP port is closed, the target replies with a TCP RST (reset)
packet. If the target TCP port is open, it simply discards the TCP SYN FIN scan.
Syntax
[no] dos-protection syn-fin-scan
Default Setting
Disabled
Command Mode
Global Configuration
Command Usage
In these packets, SYN=1 and FIN=1.
Example
Console(config)#dos-protection syn-fin-scan
Console(config)#

Table of Contents

Other manuals for Edge-Core ECS4210-12P

Preview: Installation Guide
Installation Guide50 pages
Preview: Web Management Guide
Web Management Guide550 pages
Question and Answer IconNeed help?

Do you have a question about the Edge-Core ECS4210-12P and is the answer not in the manual?

Edge-Core ECS4210-12P Specifications

General IconGeneral
BrandEdge-Core
ModelECS4210-12P
CategoryNetwork Router
LanguageEnglish

Summary

Section I Getting Started

Initial Switch Configuration

Information on connecting to the switch and basic configuration procedures.

Section II Command Line Interface

Using the Command Line Interface

Explains how to access and use the CLI, including console and Telnet connections.

Entering Commands

Details on entering CLI commands, including keywords, arguments, completion, and history.

CLI Command Groups

Categorizes system commands into functional groups like General, System Management, and SNMP.

Section III Appendices

Troubleshooting

Provides actions for common problems when accessing the management interface via Telnet, web browser, or serial connection.

Glossary

Defines key networking terms and acronyms used throughout the manual.

Related product manuals