TP-Link OC200 Omada Controller Software 4.1.5Windows/Linux User Guide - Page 104
Record Route Option, Stream Option, Timestamp Option, and No Operation Option.
View all TP-Link OC200 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 104 highlights
Chapter 4 Configure the Network with Omada SDN Controller Block TCP Scan (Stealth With this option enabled, the gateway will block the anomalous packets in the FIN/Xmas/Null) following attack scenarios: Stealth FIN Scan: The attacker sends the packet with its SYN field and the FIN field set to 1. The SYN field is used to request initial connection whereas the FIN field is used to request disconnection. Therefore, the packet of this type is illegal. Xmas Scan: The attacker sends the illegal packet with its TCP index, FIN, URG and PSH field set to 1. Null Scan: The attacker sends the illegal packet with its TCP index and all the control fields set to 0. During the TCP connection and data transmission, the packets with all control fields set to 0 are considered illegal. Block Ping of Death With this option enabled, the gateway will block Ping of Death attack. Ping of Death attack means that the attacker sends abnormal ping packets which are smaller than 64 bytes or larger than 65535 bytes to cause system crash on the target computer. Block Large Ping With this option enabled, the router will block the ping packets which are larger than 1024 packets to protect the system from Large Ping attack. Block Ping from WAN With this option enabled, the router will block the ICMP request from WAN. Block WinNuke Attack With this option enabled, the router will block WinNuke attacks. WinNuke attack refers to a remote DoS (denial-of-service) attack that affects some Windows operating systems, such as the Windows 95. The attacker sends a string of OOB (Out of Band) data to the target computer on TCP port 137, 138 or 139, causing system crash or Blue Screen of Death. Block TCP Packets with With this option enabled, the router will filter the TCP packets with both SYN Bit and SYN and FIN Bits Set FIN Bit set. Block TCP Packets with FIN Bit but No ACK Bit Set With this option enabled, the router will filter the TCP packets with FIN Bit set but without ACK Bit set. Block Packets with Specified Options With this option enabled, the router will filter the packets with specified IP options including Security Option, Loose Source Route Option, Strict Source Route Option, Record Route Option, Stream Option, Timestamp Option, and No Operation Option. You can choose the options according to your needs. 102