Fujitsu PRIMERGY BX900 - Denial-Of-Service

811 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

© 2011 Fujitsu Technology Solutions

320

9.4.11 Denial-of-Service

9.4.11.1 Config

Figure : Denial-of-Service Config

Configurable Data

SIP=DIP - Enable or disable this option by selecting the corresponding line on the pull down entry

field. Enabling SIP=DIP DoS prevention causes the switch to drop packets that have a source IP

address equal to the destination IP address. The factory default is disabled.

First Fragment - Enable or disable this option by selecting the corresponding line on the pull down

entry field. Enabling First Fragment DoS prevention causes the switch to drop packets that have a

TCP header smaller then the configured Min TCP Hdr Size. The factory default is disabled.

Min TCP Hdr Size - Specify the Min TCP Hdr Size allowed. If First Fragment DoS prevention is

enabled, the switch will drop packets that have a TCP header smaller then this configured Min TCP

Hdr Size. The factory default is disabled. (Note: This attribute is provided in stackable Ethernet

Connection Blade)

TCP Fragment - Enable or disable this option by selecting the corresponding line on the pull down

entry field. Enabling TCP Fragment DoS prevention causes the switch to drop packets that have an

IP fragment offset equal to 1. The factory default is disabled.

TCP Flag - Enable or disable this option by selecting the corresponding line on the pull down entry

field. Enabling TCP Flag DoS prevention causes the switch to drop packets that have TCP flag SYN

set and TCP source port less than 1024 or TCP control flags set to 0 and TCP sequence number set

to 0 or TCP flags FIN, URG, and PSH set and TCP sequence number set to 0 or both TCP flags

SYN and FIN set. The factory default is disabled.

L4 Port - Enable or disable this option by selecting the corresponding line on the pull down entry

field. Enabling L4 Port DoS prevention causes the switch to drop packets that have TCP/UDP source

port equal to TCP/UDP destination port. The factory default is disabled.

ICMP - Enable or disable this option by selecting the corresponding line on the pull down entry field.

Enabling ICMP DoS prevention causes the switch to drop ICMP packets that have a type set to

ECHO_REQ (ping) and a size greater than the configured ICMP Pkt Size. The factory default is

disabled.

Table of Contents

Other manuals for Fujitsu PRIMERGY BX900

Configuration Guide67 pages

Quick Start Guide21 pages

Hardware Reference Manual69 pages

System Message Guide430 pages

Related product manuals

Preview: Fujitsu Primergy BX900 S2

Fujitsu Primergy BX900 S2

Preview: PRIMERGY ServerView BX900

PRIMERGY ServerView BX900

Fujitsu PRIMERGY BX924 S4

Preview: Fujitsu PRIMERGY BX920 S2

Fujitsu PRIMERGY BX920 S2

Fujitsu Primergy BX2560 M1

Preview: Fujitsu D3320 PRIMERGY BX2560 M2

Fujitsu D3320 PRIMERGY BX2560 M2

Preview: Fujitsu Primergy TX120

Fujitsu Primergy TX120

Preview: Fujitsu PRIMERGY RX300 S7

Fujitsu PRIMERGY RX300 S7

Preview: Fujitsu PRIMERGY RX300 S8

Fujitsu PRIMERGY RX300 S8

Preview: Fujitsu PRIMERGY RX300 S6

Fujitsu PRIMERGY RX300 S6

Preview: Fujitsu PRIMERGY RX200 S8

Fujitsu PRIMERGY RX200 S8

Preview: Fujitsu Primergy RX300 S2

Fujitsu Primergy RX300 S2