Home » D-Link Manuals » Wireless » D-Link DIS-200G » Manual Viewer

D-Link DIS-200G Emulator - Page 105

DoS Attack Prevention Settings, TCP SYN SrcPort Less 1024

Add to My Manuals
Save this manual to your list of manuals

Page 105 highlights

DIS-200G Series Industrial Gigabit Ethernet Smart Managed Switch DoS Attack Prevention Settings This window is used to view and configure the Denial-of-Service (DoS) attack prevention settings. The following well-known DoS types which can be detected by most switches: • Land Attack: This type of attack involves IP packets where the source and destination address are set to the address of the target device. It may cause the target device to reply to itself continuously. • Blat Attack: This type of attack will send packets with the TCP/UDP source port equal to the destination port of the target device. It may cause the target device to respond to itself. • TCP-Null: This type of attack involves port scanning by using specific packets which contain a sequence number of 0 and no flags. • TCP-Xmas: This type of attack involves port scanning by using specific packets which contain a sequence number of 0 and the Urgent (URG), Push (PSH), and FIN flags. • TCP SYN-FIN: This type of attack involves port scanning by using specific packets which contain SYN and FIN flags. • TCP SYN SrcPort Less 1024: This type of attack involves port scanning by using specific packets which contain source port 0 to 1023 and SYN flag. • Ping Death Attack: A ping of death is a type of attack on a computer that involves sending a malformed or otherwise a malicious ping to a computer. A ping is normally 64 bytes in size (many computers cannot handle a ping larger than the maximum IP packet size) which is 65535 bytes. The sending of a ping of this size can crash the target computer. Traditionally, this bug has been relatively easy to exploit. Generally, sending a 65536 byte ping packet is illegal according to networking protocol, but a packet of such a size can be sent if it is fragmented; when the target computer reassembles the packet, a buffer overflow can occur, which often causes a system crash. • All Types: All of above types. To view the following window, click Security > DoS Attack Prevention Settings, as shown below: Figure 8-10 DoS Attack Prevention Settings window The fields that can be configured for DoS Attack Prevention Settings are described below: Parameter DoS Type Selection State Action Description Tick the DoS type option that will be prevented here. Select to enable or disable the DoS attack prevention feature's global state here. Select the action that will be taken when the DoS attack was detected here. The only option to select here is Drop. 95

Section	Page
1. Introduction	8
Audience	8
Other Documentation	8
Conventions	8
Notes, Notices, and Cautions	9
2. Web-based Switch Configuration	10
Management Options	10
Connecting using the Web User Interface	10
Logging onto the Web Manager	10
Smart Wizard	12
Web User Interface (Web UI)	16
Areas of the User Interface	16
Surveillance Mode	17
3. Save and Tools	18
Save Configuration	18
Firmware Information	18
Firmware Upgrade & Backup	19
Firmware Upgrade from HTTP	19
Firmware Upgrade from TFTP	19
Firmware Backup to HTTP	20
Firmware Backup to TFTP	20
Configuration Restore & Backup	21
Configuration Restore from HTTP	21
Configuration Restore from TFTP	21
Configuration Backup to HTTP	22
Configuration Backup to TFTP	22
Log Backup	23
Log Backup to HTTP	23
Log Backup to TFTP	23
Ping	24
Reset	25
Reboot System	25
4. System	26
Device Information	26
System Information Settings	26
System Information	26
IPv4 Interface	27
IPv6 Interface	28
Port Configuration	28
Port Settings	28
Jumbo Frame	30
PoE(DIS-200G-12PS and DIS-200G-12PSW Only)	31
PoE System	31
PoE Status	32
PoE Configuration	32
PD Alive	33
System Log	34
System Log Settings	34
System Log Server Settings	34
System Log	35
Time and SNTP	35
Clock Settings	35
Time Zone Settings	36
SNTP Settings	37
Time Profile	38
5. Management	39
User Account Settings	39
Password Encryption	40
SNMP	41
SNMP Global Settings	42
SNMP View Table Settings	43
SNMP Community Table Settings	44
SNMP Group Table Settings	45
SNMP Engine ID Local Settings	46
SNMP User Table Settings	46
SNMP Host Table Settings	47
RMON	49
RMON Global Settings	49
RMON Statistics Settings	49
RMON History Settings	50
RMON Alarm Settings	51
RMON Event Settings	52
HTTP/HTTPS	53
D-Link Discovery Protocol	53
6. Layer 2 Features	54
FDB	54
Static FDB	54
MAC Address Table Settings	55
MAC Address Table	56
VLAN	57
VLAN Configuration Wizard	57
802.1Q VLAN	59
Management VLAN	59
GVRP	60
Asymmetric VLAN	63
VLAN Interface	63
Auto Surveillance VLAN	67
Voice VLAN	71
Spanning Tree	74
STP Global Settings	76
STP Port Settings	77
MST Configuration Identification	78
STP Instance	79
MSTP Port Information	79
ERPS (G.8032)	80
ERPS	80
ERPS Profile	82
Loopback Detection	84
Link Aggregation	85
L2 Multicast Control	88
IGMP Snooping	88
MLD Snooping	90
Multicast Filtering	92
LLDP	93
LLDP Global Settings	93
LLDP Neighbor Port Information	93
7. Quality of Service (QoS)	94
802.1p Priority	94
Port Rate Limiting	95
Port Trust State	96
DSCP CoS Mapping	96
8. Security	97
Port Security	97
Port Security Global Settings	97
Port Security Port Settings	98
Port Security Address Entries	99
RADIUS	100
RADIUS Global Settings	100
RADIUS Server Settings	100
RADIUS Statistic	101
Safeguard Engine	102
Safeguard Engine Settings	102
Traffic Segmentation Settings	103
Storm Control	103
DoS Attack Prevention Settings	105
Zone Defense	106
SSH	107
SSH Global Settings	107
SSL	108
SSL Global Settings	109
Web-based Access Control	110
Web Authentication	111
WAC Port Settings	112
WAC Customize Page	113
9. OAM	114
Cable Diagnostics	114
DDM	115
DDM Settings	115
DDM Temperature Threshold Settings	116
DDM Voltage Threshold Settings	116
DDM Bias Current Threshold Settings	117
DDM TX Power Threshold Settings	118
DDM RX Power Threshold Settings	118
DDM Status Table	119
10. Monitoring	120
Statistics	120
Port Counters	120
Mirror Settings	121
11. Green	122
Power Saving	122
EEE	124
12. Surveillance Mode	125
Surveillance Overview	125
Surveillance Topology	125
Device Information	128
Port Information	129
Group Details	130
IP-Camera Information	131
NVR Information	132
PoE Information	133
PoE Scheduling	134
Time	136
Clock Settings	136
SNTP Settings	136
Surveillance Settings	137
Surveillance Log	139
Health Diagnostic	140
Toolbar	141
Wizard	141
Tools	141
Save	144
Help	145
Online Help	146
Standard Mode	146
Logout	146
Appendix A - System Log Entries	147
Appendix B - Trap Entries	156

Match case Limit results 1 per page

DIS-200G Series Industrial Gigabit Ethernet Smart Managed Switch

DoS Attack Prevention Settings

This window is used to view and configure the Denial-of-Service (DoS) attack prevention settings. The

following well-known DoS types which can be detected by most switches:

•

Land Attack

: This type of attack involves IP packets where the source and destination address

are set to the address of the target device. It may cause the target device to reply to itself

continuously.

•

Blat Attack

: This type of attack will send packets with the TCP/UDP source port equal to the

destination port of the target device. It may cause the target device to respond to itself.

•

TCP-Null

: This type of attack involves port scanning by using specific packets which contain a

sequence number of 0 and no flags.

•

TCP-Xmas

: This type of attack involves port scanning by using specific packets which contain a

sequence number of 0 and the Urgent (URG), Push (PSH), and FIN flags.

•

TCP SYN-FIN

: This type of attack involves port scanning by using specific packets which

contain SYN and FIN flags.

•

TCP SYN SrcPort Less 1024

: This type of attack involves port scanning by using specific

packets which contain source port 0 to 1023 and SYN flag.

•

Ping Death Attack

: A ping of death is a type of attack on a computer that involves sending a

malformed or otherwise a malicious ping to a computer. A ping is normally 64 bytes in size

(many computers cannot handle a ping larger than the maximum IP packet size) which is 65535

bytes. The sending of a ping of this size can crash the target computer. Traditionally, this bug

has been relatively easy to exploit. Generally, sending a 65536 byte ping packet is illegal

according to networking protocol, but a packet of such a size can be sent if it is fragmented;

when the target computer reassembles the packet, a buffer overflow can occur, which often

causes a system crash.

•

All Types

: All of above types.

To view the following window, click

Security > DoS Attack Prevention Settings

, as shown below:

The fields that can be configured for

DoS Attack Prevention Settings

are described below:

Parameter

Description

DoS Type Selection

Tick the DoS type option that will be prevented here.

State

Select to enable or disable the DoS attack prevention feature’s

global state here.

Action

Select the action that will be taken when the DoS attack was

detected here. The only option to select here is Drop.

Figure 8-

DoS Attack Prevention Settings window