Manualshelf

Switch User Manual

ManualsBrandsDell ManualsSwitchPC7048R
1391139213931394139513961397139813991400
1396 Denial of Service Commands
TCP Flag SYN set and Source Port < 1024 or TCP Control Flags = 0
and
TCP Sequence Number = 0 or TCP Flags FIN, URG, and PSH set
and
TCP Sequence Number = 0 or TCP Flags SYN and FIN set.
TCP Offset:
Checks for TCP header offset =1.
•TCP SYN:
–TCP Flag SYN set.
TCP SYN & FIN:
TCP Flags SYN and FIN set.
TCP FIN & URG & PSH:
TCP Flags FIN and URG and PSH set and TCP Sequence Number =
0.
•ICMP V6:
Limiting the size of ICMPv6 Ping packets.
•ICMP Fragment:
Checks for fragmented ICMP packets.
Commands in this Chapter
This chapter explains the following commands:
dos-control firstfrag ip icmp error-interval
dos-control icmp ip unreachables
dos-control l4port ip redirects
dos-control sipdip ipv6 icmp error-interval
dos-control tcpflag ipv6 unreachables
dos-control tcpfrag show dos-control
ip icmp echo-reply
2CSPC4.XCT-SWUM2XX1.book Page 1396 Monday, October 3, 2011 11:05 AM