Alteon Application Switch Operating System Application Guide
Advanced Denial of Service Protection
626 Document ID: RDWR-ALOS-V2900_AG1302
12. Enable matchall criteria so that the filter matches on all patterns in the pattern group.
13. Apply the filter to the client port. This example assumes a client connection on port 22.
14. Apply and save the configuration.
FlexiRules for SIP over UDP Traffic
FlexiRules control the SIP over UDP traffic going through Alteon, and enhances the SIP security in
the network. They enable administrators to customize the security policies and set rules. These rules
monitor the SIP calls and gives the SIP engine the ability to dynamically filter SIP traffic. FlexiRules
work along with filters to provide in-depth security to SIP over UDP application servers.
The following are the functions of the SIP UDP rules:
• Deny traffic based on content match
• Rate limit based on content match
• Monitor SIP Uniform Resource Identifiers (URI)
FlexiRules for SIP over UDP are advanced pattern match filters. Multiple rules can be configured. The
severity level can be set from 1 to 5, where 1 is the highest severity. Selection is based on severity
when multiple rules are hit.
The following inputs define FlexiRules for SIP over UDP:
• Header field name and content
• Bandwidth Management (BWM) contract for the rule
• Alert message display
• Severity
• Dependent rules
There are two modes set by the SIP rules in a session entry:
• Monitor Mode, page 626
• Dependent Mode, page 627
Monitor Mode
In monitor mode, Alteon dumps the SIP header information to the Management Processor (MP) for
analysis. This dump can be used for troubleshooting.
To enable monitor mode
You enable the monitor in the contract.
>> Security# matchall ena
Current Match-all Criteria: disabled
New Match-all Criteria: enabled
>> # /cfg/slb/port 22
(Select the client port)
>> SLB Port 22# filt ena
(Enable filtering on the client
port)
>> SLB Port 22# add 190
(Add Filter #190 to the client
port)
To Next Page
Loading...
