R0106-HP MSR Router Series Security Command Reference(V7)
656
Views
Attack defense policy view
Predefined user roles
network-admin
Usage guidelines
This command enables global UDP flood attack detection. It applies to all IP addresses except for those
specified by the udp-flood detect command. The system uses the global trigger threshold set by the
udp-flood threshold command and global actions specified by the udp-flood action command.
Examples
# Enable UDP flood attack detection for non-specific IP addresses in attack defense policy atk-policy-1.
<Sysname> system-view
[Sysname] attack-defense policy atk-policy-1
[Sysname-attack-defense-policy-atk-policy-1] udp-flood detect non-specific
Related commands
• udp-flood action
• udp-flood detect
• udp-flood threshold
udp-flood threshold
Use udp-flood threshold to set the global threshold for triggering UDP flood attack prevention.
Use undo udp-flood threshold to restore the default.
Syntax
udp-flood threshold threshold-value
undo udp-flood threshold
Default
The global threshold is 1000 for triggering UDP flood attack prevention.
Views
Attack defense policy view
Predefined user roles
network-admin
Parameters
threshold-value: Specifies the threshold for triggering UDP flood attack prevention. The value range is 1
to 64000 in units of UDP packets sent to an IP address per second.
Usage guidelines
The global threshold applies to UDP flood attack detection for non-specific IP addresses.
Adjust the threshold according to the application scenarios. If the number of UDP packets to a protected
server, such as an HTTP or FTP server, is normally large, set a large threshold. A small threshold might
affect the server services. For a network that is unstable or susceptible to attacks, set a small threshold.