Netgear GS752TS GS7xxTS-TPS Software Admin Manual - Page 47
Denial of Service Min TCP Hdr Size
View all Netgear GS752TS manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 47 highlights
GS728TS, GS728TPS, GS752TS, and GS752TPS Gigabit Smart Switches DoS Configuration The DoS Configuration page lets you to select which types of DoS attacks for the switch to monitor and block. To access the DoS Configuration page, click System > Management > Denial of Service > Denial of Service Configuration. To configure individual DoS settings: 1. Select the types of DoS attacks for the switch to monitor and block and configure any associated values, as the following list describes. • Denial of Service Min TCP Hdr Size. Specify the minimum TCP header size allowed. If First Fragment DoS prevention is enabled, the switch will drop packets that have a TCP header smaller than this configured value. The factory default is 20 bytes. • Denial of Service ICMPv4. Enable or disable this option by selecting the appropriate radio button. Enabling ICMPv4 DoS prevention causes the switch to drop ICMPv4 packets that have a type set to ECHO_REQ (ping) and a size greater than the configured ICMPv4 packet size. The factory default is Disable. • Denial of Service Max ICMPv4 Size. Specify the maximum allowed ICMPv4 packet size. If ICMPv4 DoS prevention is enabled, the switch will drop ICMPv4 ping packets that have a size greater than this configured maximum ICMPv4 packet size. The range is 0 to 16376, and the default value (when enabled) is 512. • Denial of Service ICMPv6. Enabling ICMPv6 DoS prevention causes the switch to drop ICMPv6 packets that have a type set to ECHO_REQ (ping) and a size greater than the configured ICMPv6 maximum packet size. The factory default is disabled. 47