Alteon Application Switch Operating System Application Guide
Advanced Denial of Service Protection
624 Document ID: RDWR-ALOS-V2900_AG1302
To match and deny large packets
This configuration is similar to the examples in Matching and Denying a UDP Pattern Group,
page 621 and Matching All Patterns in a Group, page 623.
1. Create an SLB string pattern that filters non-zero IP offsets. Enter the value in hexadecimal
notation.
2. Create another SLB string pattern that filters More-Fragments.
3. Apply the new configuration.
4. Identify the IDs of the defined patterns.
The strings in bold are used in this example. Number of entries: 11
>> /cfg/slb/layer7/slb/addstr
Enter type of string [l7lkup|pattern]: pattern
Enter match pattern type [ascii|binary]: binary
(Add the pattern)
(Select binary matching)
Enter HEX string: 0000 (non-zero IP offset)
Enter offset in bytes from start of IP frame (0-1500):
6
Enter depth in bytes to search from offset (0-1500): 0
(Search from seventh byte)
(Through end of pattern)
Enter operation (eq|gt|lt): gt
(For values greater than 0000)
>> Server Loadbalance Resource# add
Enter type of string [l7lkup|pattern]: pattern
Enter match pattern type [ascii|binary]: binary
(Add the pattern)
(Select binary matching)
>> Enter HEX string: 4000
(More-Fragments bit set)
Enter offset in bytes from start of IP frame (0-1500):
6
Enter depth in bytes to search from offset (0-1500): 0
(Search from seventh byte)
(Through end of pattern)
Enter operation (eq|gt|lt): lt
(For values less than 4000)
>> Server Loadbalance Resource# apply
>> Server Loadbalance Resource# apply
ID SLB String
1
ida
2
%c1%9c
3
%c0%af
4
playdog.com
6
HTTPHDR:Host:www.playdog.com
7
HTTPHDR:SoapAction=*
To Next Page
Loading...
