3Com Switch 8800 Family Firewall Module Configuration and Command Reference Guide
148 CHAPTER 10: ATTACK PREVENTION AND PACKET STATISTICS
■ Enabling the Fraggle attack prevention function
■ Enabling Frag Flood attack prevention function
■ Enabling the WinNuke attack prevention function
■ Enabling the SYN Flood attack prevention function
■ Enabling the ICMP Flood attack prevention function
■ Enabling the UDP Flood attack prevention function
■ Enabling the ICMP redirect packet control function
■ Enabling the ICMP unreachable packet attack prevention function
■ Enabling the IP Sweep attack prevention function
■ Enabling the port scan attack prevention function
■ Enabling the control on IP packets carrying the source routes
■ Enabling the attack prevention function for the IP packet carrying route record
■ Enabling the Tracert packet control function
■ Enabling the Ping of Death attack prevention function
■ Enabling the Teardrop attack prevention function
■ Enabling the TCP flag validity detection function
■ Enabling the IP fragment packet detection function
■ Enabling the large ICMP packet control function
Enabling/Disabling ARP
Flood Attack Prevention
Perform the following configuration in system view.
By default, ARP Flood attack prevention is not enabled. The rate threshold for
receiving ARP packets is in the range of 1 to 10000 (pps) and defaults to 100 pps.
Enabling/Disabling
Attack Prevention for
Reverse ARP Lookup
Perform the following configuration in system view.
By default, attack prevention for reverse ARP lookup is not enabled.
Enabling/Disabling ARP
Spoofing Attack
Prevention
Perform the following configuration in system view.
Tabl e 149 Enable/disable ARP Flood attack prevention
Operation Command
Enable ARP Flood attack prevention
firewall defend arp-flood [ max-rate
rate-number ]
Disable ARP Flood attack prevention undo firewall defend arp-flood
Tabl e 150 Enable/disable attack prevention for reverse ARP lookup
Operation Command
Enable attack prevention for reverse ARP
lookup
firewall defend arp-reverse-query
Disable attack prevention for reverse ARP
lookup
undo firewall defend arp-reverse-query