D-Link DWS-4026 Product Manual - Page 79
Multiple Port Mirroring, Table 19, Denial of Service Configuration Fields Cont., Field, Description
UPC - 790069325533
View all D-Link DWS-4026 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 79 highlights
Software User Manual 12/10/09 D-Link Unified Access System Table 19: Denial of Service Configuration Fields (Cont.) Field Denial of Service Max ICMP Size Denial of Service L4 Port Denial of Service SIP=DIP Denial of Service TCP Flag Denial of Service TCP Fragment Description Specify the Max ICMP Pkt Size allowed. If ICMP DoS prevention is enabled, the switch will drop ICMP ping packets that have a size greater than this configured Max ICMP Pkt Size. The factory default is disabled. Enable or disable this option by selecting the corresponding line on the pulldown entry field. Enabling L4 Port DoS prevention causes the switch to drop packets that have TCP/UDP source port equal to TCP/UDP destination port. The factory default is disabled. Enable or disable this option by selecting the corresponding line on the pulldown entry field. Enabling SIP=DIP DoS prevention causes the switch to drop packets that have a source IP address equal to the destination IP address. The factory default is disabled. Enable or disable this option by selecting the corresponding line on the pulldown entry field. Enabling TCP Flag DoS prevention causes the switch to drop packets that have TCP flag SYN set and TCP source port less than 1024 or TCP control flags set to 0 and TCP sequence number set to 0 or TCP flags FIN, URG, and PSH set and TCP sequence number set to 0 or both TCP flags SYN and FIN set. The factory default is disabled. Enable or disable this option by selecting the corresponding line on the pulldown entry field. Enabling TCP Fragment DoS prevention causes the switch to drop packets that have an IP fragment offset equal to 1. The factory default is disabled. • If you change any of the DoS settings, click Submit to apply the changes to the switch. To preserve the changes across a switch reboot, you must perform a save. MULTIPLE PORT MIRRORING Port mirroring selects the network traffic for analysis by a network analyzer. This is done for specific ports of the switch. As such, many switch ports are configured as source ports and one switch port is configured as a destination port. You have the ability to configure how traffic is mirrored on a source port. Packets that are received on the source port, that are transmitted on a port, or are both received and transmitted, can be mirrored to the destination port. The packet that is copied to the destination port is in the same format as the original packet on the wire. This means that if the mirror is copying a received packet, the copied packet is VLAN tagged or untagged as it was received on the source port. If the mirror is copying a transmitted packet, the copied packet is VLAN tagged or untagged as it is being transmitted on the source port. Use the Multiple Port Mirroring page to define port mirroring sessions. To access the Multiple Port Mirroring page, click LAN > Administration > Multiple Port Mirroring in the navigation menu. Document 34CSFP6XXUWS-SWUM100-D7 Multiple Port Mirroring Page 79