D-Link DSS-200G-10MPP Product Manual - Page 84

D-Link DSS-200G MP/MPP series Switch User Manual • TCP SYN Src Port Less 1024: This type of attack involves port scanning by using specific packets which contain source port 0 to 1023 and SYN flag. • Ping Death Attack: A ping of death is a type of attack on a computer that involves sending a malformed or otherwise a malicious ping to a computer. A ping is normally 64 bytes in size (many computers cannot handle a ping larger than the maximum IP packet size) which is 65535 bytes. The sending of a ping of this size can crash the target computer. Traditionally, this bug has been relatively easy to exploit. Generally, sending a 65536 byte ping packet is illegal according to networking protocol, but a packet of such a size can be sent if it is fragmented; when the target computer reassembles the packet, a buffer overflow can occur, which often causes a system crash. • All Types: All of above types. To view the following window, click Security > DoS Attack Prevention Settings, as shown below: Figure 4-47 DoS Attack Prevention Settings window The fields that can be configured for DoS Attack Prevention Settings are described below: Parameter DoS Type Selection State Action Description Select the DoS type option that will be prevented here. Select to enable or disable the DoS attack prevention feature's global state here. Select the action that will be taken when the DoS attack was detected here. The only option to select here is Drop. Click the Apply button to accept the changes made. Zone Defense Settings This window is used to view and configure the Zone Defense setting. To view the following window, click Security > Zone Defense Settings, as shown below: Figure 4-55 Zone Defense Settings window 79