EasyManua.ls Logo

HP MSR SERIES

HP MSR SERIES
684 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
646
ipv6-ext-header ext-header-value: Specifies an IPv6 extension header by its value in the range of 0 to
255. An IPv6 extension header attack occurs when the specified IPv6 extension header value is detected.
land: Specifies the Land attack.
large-icmp: Specifies the large ICMP packet attack.
large-icmpv6: Specifies the large ICMPv6 packet attack.
ping-of-death: Specifies the ping-of-death attack.
smurf: Specifies the smurf attack.
snork: Specifies the UDP snork attack.
tcp-all-flags: Specifies the attack where a TCP packet has all flags set.
tcp-fin-only: Specifies the attack where a single TCP FIN packet is sent to a privileged port (port number
lower than 1024).
tcp-invalid-flags: Specifies the attack that uses TCP packets with invalid flags.
tcp-null-flag: Specifies the attack where a single TCP packet has no TCP flags set.
tcp-syn-fin: Specifies the attack where a TCP packet has both SYN and FIN flags set.
teardrop: Specifies the teardrop attack.
tiny-fragment: Specifies the tiny fragment attack.
traceroute: Specifies the traceroute attack.
udp-bomb: Specifies the UDP bomb attack.
winnuke: Specifies the WinNuke attack.
action: Specifies the actions against the single-packet attack. If you do not specify this keyword, the
default action of the attack level to which the single-packet attack belongs is used.
drop: Drops packets that match the specified signature.
logging: Enables logging for the specified single-packet attack.
none: Takes no action.
Usage guidelines
One command execution enables signature detection for only one single-packet attack type. You can use
this command multiple times to configure signature detection for multiple single-packet attack types.
When you specify a packet type by its value, if the packet type has a corresponding keyword, the
keyword is displayed in command output. Otherwise, the value is displayed.
Examples
# Configure signature detection for smurf attack in attack defense policy atk-policy-1.
<Sysname> system-view
[Sysname] attack-defense policy atk-policy-1
[Sysname-attack-defense-policy-atk-policy-1] signature detect smurf action drop
Related commands
signature level action

Table of Contents

Other manuals for HP MSR SERIES

Preview: Configuration Guide
Configuration Guide889 pages

Related product manuals