Manage Device Security
298
M4100 Series Managed Switch
8. In the Denial of Service Min TCP Header Size field, specify the Min TCP Hdr Size allowed.
If DoS TCP fragment is enabled, the switch drops these packets:
• First
TCP fragments with a TCP payload: IP_Payload_Length - IP_Header_Size <
Min_TCP_Header_Size.
• Its range is 0 to 255.
The default value is 20.
9. Use Denial of Service ICMPv4 to enable ICMPv4 DoS prevention.
ICMPv4 DoS prevention causes the switch to drop ICMPv4 packets with a type set to
ECHO_REQ (ping) and a size greater than the configured ICMPv4 Pkt Size.
The factory
default is disabled.
10. Use Denial of Service Max ICMPv4 Packet Size to specify the Max ICMPv4 Pkt Size
allowed.
If ICMPv4 DoS prevention is enabled, the switch drops IPv4 ICMP ping packets with a
size greater than the configured Max ICMPv4 Pkt Size. Its range is 0 to 16376. The
default value is 512.
11. Use Denial of Service ICMPv6 to enable ICMPv6 DoS prevention.
CMPv6 DoS prevention causes the switch to drop ICMPv6 packets with a type set to
ECHO_REQ (ping) and a size greater than the configured ICMPv6 Pkt Size.
The factory
default is disabled.
12. Use Denial of Service Max ICMPv6 Packet Size to specify the Max IPv6 ICMP Pkt Size
allowed.
If ICMPv6 DoS prevention is enabled, the switch drops IPv6 ICMP ping packets with a
size greater than this configured Max ICMPv6 Pkt Size. Its range is 0 to 16376. The
default value is 512.
To Next Page
Loading...
Need help?
General
