■ Cannot access Global Configuration mode and cannot configure VRs to which
they have access.
■ Cannot see or use any commands associated with the file system, boot settings,
or system configuration.
The following table lists some, but not all, commands accessed from Exec mode that
are available only to users with no VR restriction:
show redundancyreloadclear line
show secretsreload slotclock set
show subsystemsrenamecopy
show timingredundancy force-switchovercopy running-configuration
show usersredundancy revertdelete
show utilizationshow bootdir
srp switchshow configdisconnect ssh
synchronizeshow exception dumpconfigure
–show ip ssherase secrets
–show linehalt
Denial of Service (DoS) Protection
A denial-of-service (DoS) attack is any attempt to deny valid users access to network
or server resources by using up all the resources of the network element or server.
Denial of service protection provides reactive prevention from attack and determines
whether the source of traffic is valid or invalid. DoS protection includes diagnostic
tools and configuration options. DoS protection groups provide a simple policy that
can be applied to interfaces, which can specify a set of parameters to tune behavior.
Figure 26 on page 451 shows an example of the state of a flow with DoS protection
using suspicious control flow detection (SCFD).
450 ■ Denial of Service (DoS) Protection
JUNOSe 11.1.x System Basics Configuration Guide
To Next Page
Loading...