Netgear XSM4324FS User Manual - Page 539
Denial of Service TCP FIN&URG&PSH, Denial of Service TCP Flag&Sequence
View all Netgear XSM4324FS manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 539 highlights
M4300 Intelligent Edge Series Fully Managed Stackable Switches 10. Select the Denial of Service First Fragment Disable or Enable radio button. This enables First Fragment DoS prevention, which causes the switch to check DoS options on first fragment IP packets when switch are receiving fragmented IP packets. Otherwise, switch ignores the first fragment IP packages.The factory default is Disable. 11. Select the Denial of Service ICMP Fragment Disable or Enable radio button. Enabling ICMP Fragment DoS prevention causes the switch to drop ICMP Fragmented packets. The factory default is Disable. 12. Select the Denial of Service SIP=DIP Disable or Enable radio button. Enable SIP=DIP DoS prevention causes the switch to drop packets with a source IP address equal to the destination IP address. The factory default is Disable. 13. Select the Denial of Service SMAC=DMAC Disable or Enable radio button. Enabling SMAC=DMAC DoS prevention causes the switch to drop packets with a source MAC address equal to the destination MAC address. The factory default is Disable. 14. Select the Denial of Service TCP FIN&URG&PSH Disable or Enable radio button. Enabling TCP FIN & URG & PSH DoS prevention causes the switch to drop packets with TCP Flags FIN, URG, and PSH set and TCP Sequence Number=0. The factory default is Disable. 15. Select the Denial of Service TCP Flag&Sequence Disable or Enable radio button. Enabling TCP Flag DoS prevention causes the switch to drop packets with TCP control flags set to 0 and TCP sequence number set to 0. The factory default is Disable. 16. Select the Denial of Service TCP Fragment Disable or Enable radio button. Enabling TCP Fragment DoS prevention causes the switch to drop packets as follows: First TCP fragments with a TCP payload: IP_Payload_Length - IP_Header_Size < Min_TCP_Header_Size. The factory default is Disable. 17. Select the Denial of Service TCP Offset Disable or Enable radio button. Enabling TCP Offset DoS prevention causes the switch to drop packets with a TCP header Offset=1. The factory default is Disable. 18. Select the Denial of Service TCP Port Disable or Enable radio button. Enabling TCP Port DoS prevention causes the switch to drop packets with TCP source port equal to TCP destination port. The factory default is Disable. 19. Select the Denial of Service TCP SYN Disable or Enable radio button. Enabling TCP SYN DoS prevention causes the switch to drop packets with TCP flags SYN set. The factory default is Disable. 20. Select the Denial of Service TCP SYN & FIN Disable or Enable radio button. Enabling TCP SYN & FIN DoS prevention causes the switch to drop packets with TCP flags SYN and FIN set. The factory default is Disable. Manage Switch Security 539 User Manual