Dell PowerEdge M520 Dell PowerConnect M6220/M6348/M8024 Switches Configuration - Page 42
Denial of Service Attack Protection, Overview
View all Dell PowerEdge M520 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 42 highlights
Example #4 Show Interface LLDP Parameters console#show lldp interface 1/g10 LLDP Interface Configuration Interface Link Transmit Receive Notify TLVs Mgmt 1/g10 Down Enabled Enabled Disabled Y TLV Codes: 0- Port Description, 1- System Name 2- System Description, 3- System Capabilities Denial of Service Attack Protection This section describes the PowerConnect M6220/M6348/M8024 switches Denial of Service Protection feature. Overview Denial of Service: • Spans two categories: - Protection of the switch - Protection of the network • Protects against the exploitation of a number of vulnerabilities which would make the host or network unstable • Compliant with Nessus. Dell tested the switch software with Nessus version 2.0.10. Nessus is a widelyused vulnerability assessment tool. • PowerConnect M6220/M6348/M8024 switch software provides a number of features that help a network administrator protect networks against DoS attacks. There are 6 available types of attacks which can be monitored for and blocked. Each type of attack is represented by a dos-control command keyword. console(config)#dos-control ? firstfrag icmp l4port sipdip tcpflag tcpfrag Enables IPv4 first fragment checking. Enables ICMP size checking. Enables L4 port number checking. Enables SIP=DIP checking. Enables TCP flag checking. Enables TCP fragment checking. 42 Switching Configuration