Manualshelf

HP Comware 5 Debug Manual Vol 1

ManualsBrandsHP ManualsNetwork HardwareHP HSR68xx Configure-to-Order Router Solution
351352353354355356357358359360
DDoS protection debugging commands
The output description tables in this document only contain fields and messages that require an
explanation.
debugging ddos packet
Use debugging ddos packet to enable DDoS protection packet debugging.
Use undo debugging ddos packet to disable DDoS protection packet debugging.
Syntax
debugging ddos packet
undo debugging ddos packet
Default
DDoS protection packet debugging is disabled.
Views
User view
Default command level
1: Monitor level
Usage guidelines
Tab l e 192 describes output fields and messages for the debugging ddos packet command.
Table 192 Output from the debugging ddos packet command
Field
Description
User-service: user-service-name Name of the user service.
Src-ip: src-ip-address Source IP address of the packet.
Dst_ip: dst-ip-address Destination IP address of the packet.
Src-port: src-port-num Source port number of the packet.
Dst-port: dst-port-num Destination port number of the packet.
Protocol: protocol-type Protocol type of the packet.
Examples
# Enable DDoS protection packet debugging on the Guard. Output similar to the following example is
generated when IP address 1.1.1.1 is attacked under the following conditions:
1. Traffic filtering devices are added on the SecCenter.
2. On the SecCenter, a user service named example is defined to protect IP address 1.1.1.1 against
DDoS attacks.
<Sysname> debugging ddos packet
*Feb 26 16:01:28:192 2009 Sysname DDOS/7/PACKET:
349