Cisco 11503 Administration Guide - Page 206
Defining a DoS SNMP Trap-Type
UPC - 746320664958
View all Cisco 11503 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 206 highlights
Configuring Denial of Service (DoS) Chapter 5 Configuring Simple Network Management Protocol (SNMP) The following running-configuration example shows the results of entering the commands in Table 5-2. GLOBAL snmp trap-type enterprise snmp community techpubs read-write snmp contact "fred n mandy" snmp location "Operations" snmp name "arrowpoint.com" snmp trap-host 172.16.3.6 trap snmp trap-host 172.16.8.4 trap snmp trap-type generic snmp auth-traps snmp trap-type enterprise login-failure snmp reload-enable 100 snmp trap-type enterprise dos-illegal-attack trap-threshold 1 snmp trap-type enterprise dos-land-attack trap-threshold 1 snmp trap-type enterprise dos-smurf-attack trap-threshold 1 snmp trap-type enterprise dos-syn-attack trap-threshold 10 snmp trap-type enterprise dos-illegal-attack trap-threshold 1 Defining a DoS SNMP Trap-Type To enable the CSS to generate SNMP enterprise traps when a DoS attack event occurs, use the snmp trap-type enterprise command. One trap is generated each second when the number of attacks during that second exceeds the threshold for the configured DoS attack type. For details on SNMP traps (and associated MIB objects) loaded as part of the CSS software, see the "CSS SNMP Traps" section. Ensure you first enable SNMP enterprise traps using the snmp trap-type enterprise command before you configure the CSS to generate SNMP enterprise traps when a DoS attack event occurs. For information, see the "Configuring SNMP Enterprise Traps" section. The syntax for this global configuration mode command is: snmp trap-type enterprise dos_attack_type {trap-threshold threshold_value} 5-24 Cisco Content Services Switch Administration Guide OL-5647-02