Home » TP-Link Manuals » Hubs & Switches » TP-Link T1700X-16TS » Manual Viewer

TP-Link T1700X-16TS T1700X-16TSUN V1 CLI Reference Guide - Page 91

DoS Defend Commands

View all TP-Link T1700X-16TS manuals

Add to My Manuals
Save this manual to your list of manuals

Page 91 highlights

Chapter 13 DoS Defend Commands DoS (Denial of Service) Attack is to occupy the network bandwidth maliciously by the network attackers or the evil programs sending a lot of service requests to the Host. With the DoS Defend enabled, the switch can analyze the specific field of the received packets and provide the defend measures to ensure the normal working of the local network. 13.1 ip dos-prevent Description The ip dos-prevent command is used to enable the DoS defend function globally. To disable the DoS defend function, please use no ip dos-prevent command. Syntax ip dos-prevent no ip dos-prevent Command Mode Global Configuration Mode Example Enable the DoS defend function globally: T1700X-16TS(config)#ip dos-prevent 13.2 ip dos-prevent type Description The ip dos-prevent type command is used to select the DoS Defend Type. To disable the corresponding Defend Type, please use no ip dos-prevent type command. Syntax ip dos-prevent type { land | scan-synfin | xma-scan | null-scan | port-less-1024 | blat | ping-flood | syn-flood | win-nuke } no ip dos-prevent type { land | scan-synfin | xma-scan | null-scan | port-less-1024 | blat | ping-flood | syn-flood | win-nuke } 77

Section	Page
Preface	15
Chapter 1 Using the CLI	18
1.1 Accessing the CLI	18
1.1.1 Logon by Telnet	18
1.1.2 Logon by SSH	19
1.2 CLI Command Modes	24
1.3 Security Levels	27
1.4 Conventions	28
1.4.1 Format Conventions	28
1.4.2 Special Characters	28
1.4.3 Parameter Format	28
Chapter 2 User Interface	29
2.1 enable	29
2.2 service password-encryption	29
2.3 enable password	30
2.4 enable secret	31
2.5 configure	32
2.6 exit	32
2.7 end	32
2.8 history	33
2.9 history clear	33
Chapter 3 IEEE 802.1Q VLAN Commands	34
3.1 vlan	34
3.2 interface vlan	34
3.3 name	35
3.4 switchport general allowed vlan	35
3.5 switchport pvid	36
3.6 show vlan summary	36
3.7 show vlan brief	37
3.8 show vlan	37
3.9 show interface switchport	38
Chapter 4 MAC-based VLAN Commands	39
4.1 mac-vlan mac-address	39
4.2 mac-vlan	39
4.3 show mac-vlan	40
4.4 show mac-vlan interface	41
Chapter 5 Protocol VLAN Commands	42
5.1 protocol-vlan template	42
5.2 protocol-vlan vlan	43
5.3 protocol-vlan	43
5.4 show protocol-vlan template	44
5.5 show protocol-vlan vlan	44
Chapter 6 Voice VLAN Commands	45
6.1 voice vlan	45
6.2 voice vlan aging	45
6.3 voice vlan priority	46
6.4 voice vlan mac-address	46
6.5 switchport voice vlan mode	47
6.6 switchport voice vlan security	47
6.7 show voice vlan	48
6.8 show voice vlan oui	48
6.9 show voice vlan switchport	49
Chapter 7 Private VLAN Commands	50
7.1 private-vlan primary	50
7.2 private-vlan community	50
7.3 private-vlan isolated	51
7.4 private-vlan association	51
7.5 switchport private-vlan	52
7.6 switchport private-vlan host-association	53
7.7 switchport private-vlan mapping	53
7.8 show vlan private-vlan	54
7.9 show vlan private-vlan interface	55
Chapter 8 Etherchannel Commands	56
8.1 channel-group	56
8.2 port-channel load-balance	57
8.3 lacp system-priority	58
8.4 lacp port-priority	58
8.5 show etherchannel	59
8.6 show etherchannel load-balance	59
8.7 show lacp	60
8.8 show lacp sys-id	60
Chapter 9 User Management Commands	62
9.1 user name (password)	62
9.2 user name (secret)	63
9.3 user access-control ip-based	64
9.4 user access-control mac-based	65
9.5 user access-control port-based	65
9.6 telnet	66
9.7 show user account-list	67
9.8 show user configuration	67
9.9 show telnet-status	67
Chapter 10 HTTP and HTTPS Commands	69
10.1 ip http server	69
10.2 ip http max-users	69
10.3 ip http session timeout	70
10.4 ip http secure-server	71
10.5 ip http secure-protocol	71
10.6 ip http secure-ciphersuite	72
10.7 ip http secure-max-users	72
10.8 ip http secure-session	73
10.9 ip http secure-server download certificate	73
10.10 ip http secure-server download key	74
10.11 show ip http configuration	75
10.12 show ip http secure-server	75
Chapter 11 Binding Table Commands	77
11.1 ip source binding	77
11.2 ip dhcp snooping	78
11.3 ip dhcp snooping vlan	78
11.4 ip dhcp snooping information option	79
11.5 ip dhcp snooping information strategy	79
11.6 ip dhcp snooping information remote-id	80
11.7 ip dhcp snooping information circuit-id	81
11.8 ip dhcp snooping trust	81
11.9 ip dhcp snooping mac-verify	82
11.10 ip dhcp snooping limit rate	83
11.11 ip dhcp snooping decline rate	83
11.12 show ip source binding	84
11.13 show ip dhcp snooping	84
11.14 show ip dhcp snooping interface	85
Chapter 12 ARP Inspection Commands	86
12.1 ip arp inspection(global)	86
12.2 ip arp inspection(interface)	86
12.3 ip arp inspection trust	87
12.4 ip arp inspection limit-rate	87
12.5 ip arp inspection recover	88
12.6 show ip arp inspection	89
12.7 show ip arp inspection interface	89
12.8 show ip arp inspection statistics	90
12.9 clear ip arp inspection statistics	90
Chapter 13 DoS Defend Commands	91
13.1 ip dos-prevent	91
13.2 ip dos-prevent type	91
13.3 show ip dos-prevent	92
Chapter 14 System Log Commands	93
14.1 logging buffer	93
14.2 logging buffer level	93
14.3 logging file flash	94
14.4 logging file flash frequency	94
14.5 logging file flash level	95
14.6 logging host index	96
14.7 logging monitor	97
14.8 logging monitor level	97
14.9 clear logging	98
14.10 show logging local-config	98
14.11 show logging loghost	99
14.12 show logging buffer	99
14.13 show logging flash	100
Chapter 15 SSH Commands	101
15.1 ip ssh server	101
15.2 ip ssh version	101
15.3 ip ssh algorithm	102
15.4 ip ssh timeout	102
15.5 ip ssh max-client	103
15.6 ip ssh download	103
15.7 remove public-key	104
15.8 show ip ssh	105
Chapter 16 IEEE 802.1X Commands	106
16.1 dot1x system-auth-control	106
16.2 dot1x handshake	106
16.3 dot1x auth-method	107
16.4 dot1x guest-vlan(global)	108
16.5 dot1x quiet-period	108
16.6 dot1x timeout	109
16.7 dot1x max-reauth-req	110
16.8 dot1x	110
16.9 dot1x guest-vlan(interface)	111
16.10 dot1x port-control	111
16.11 dot1x port-method	112
16.12 radius	113
16.13 radius server-account	114
16.14 show dot1x global	115
16.15 show dot1x interface	115
16.16 show radius accounting	116
16.17 show radius authentication	116
Chapter 17 MAC Address Commands	117
17.1 mac address-table static	117
17.2 mac address-table aging-time	118
17.3 mac address-table filtering	118
17.4 mac address-table max-mac-count	119
17.5 show mac address-table	120
17.6 show mac address-table aging-time	120
17.7 show mac address-table max-mac-count	121
17.8 show mac address-table interface	121
17.9 show mac address-table count	122
17.10 show mac address-table address	122
17.11 show mac address-table vlan	123
Chapter 18 System Configuration Commands	124
18.1 system-time manual	124
18.2 system-time ntp	124
18.3 system-time dst predefined	126
18.4 system-time dst date	127
18.5 system-time dst recurring	128
18.6 hostname	129
18.7 location	129
18.8 contact-info	130
18.9 ip address	130
18.10 ip address-alloc	131
18.11 reset	132
18.12 reboot	132
18.13 copy running-config startup-config	133
18.14 copy startup-config tftp	133
18.15 copy tftp startup-config	134
18.16 boot application	134
18.17 remove backup-image	135
18.18 firmware upgrade	135
18.19 ping	136
18.20 tracert	137
18.21 show system-info	138
18.22 show image-info	138
18.23 show boot	139
18.24 show running-config	139
18.25 show startup-config	140
18.26 show system-time	140
18.27 show system-time dst	140
18.28 show system-time ntp	141
18.29 show cable-diagnostics interface ten-gigabitEthernet	141
18.30 show cpu-utilization	142
18.31 show memory-utilization	142
Chapter 19 IPv6 Address Configuration Commands	143
19.1 ipv6 enable	143
19.2 ipv6 address autoconfig	143
19.3 ipv6 address link-local	144
19.4 ipv6 address dhcp	144
19.5 ipv6 address ra	145
19.6 ipv6 address	145
19.7 ipv6 address eui-64	146
19.8 show ipv6 interface	147
Chapter 20 Ethernet Configuration Commands	148
20.1 interface ten-gigabitEthernet	148
20.2 interface range ten-gigabitEthernet	148
20.3 description	149
20.4 shutdown	149
20.5 flow-control	150
20.6 duplex	150
20.7 jumbo	151
20.8 speed	152
20.9 storm-control pps	152
20.10 storm-control	153
20.11 bandwidth	154
20.12 clear counters	154
20.13 show interface status	155
20.14 show interface counters	155
20.15 show interface configuration	156
20.16 show storm-control	156
20.17 show bandwidth	157
Chapter 21 QoS Commands	158
21.1 qos	158
21.2 qos dscp	158
21.3 qos queue cos-map	159
21.4 qos queue dscp-map	160
21.5 qos queue mode	161
21.6 qos queue weight	162
21.7 show qos interface	163
21.8 show qos cos-map	163
21.9 show qos dscp-map	164
21.10 show qos queue mode	164
21.11 show qos status	165
Chapter 22 Port Mirror Commands	166
22.1 monitor session destination interface	166
22.2 monitor session source interface	167
22.3 show monitor session	168
Chapter 23 Port Isolation Commands	169
23.1 port isolation	169
23.2 show port isolation interface	170
Chapter 24 Loopback Detection Commands	171
24.1 loopback-detection(global)	171
24.2 loopback-detection interval	171
24.3 loopback-detection recovery-time	172
24.4 loopback-detection(interface)	172
24.5 loopback-detection config	173
24.6 loopback-detection recover	173
24.7 show loopback-detection global	174
24.8 show loopback-detection interface	174
Chapter 25 ACL Commands	176
25.1 access-list create	176
25.2 access-list standard	176
25.3 access-list extended	177
25.4 access-list policy name	178
25.5 access-list policy action	179
25.6 access-list bind acl(interface)	179
25.7 access-list bind acl(vlan)	180
25.8 access-list bind(interface)	180
25.9 access-list bind(vlan)	181
25.10 mac access-list	181
25.11 rule	182
25.12 show access-list	183
25.13 show access-list policy	183
25.14 show access-list bind	183
Chapter 26 MSTP Commands	185
26.1 debug spanning-tree	185
26.2 spanning-tree(global)	186
26.3 spanning-tree mode	186
26.4 spanning-tree mst configuration	187
26.5 spanning-tree mst instance	187
26.6 spanning-tree priority	188
26.7 spanning-tree tc-defend	188
26.8 spanning-tree hold-count	189
26.9 spanning-tree timer	189
26.10 spanning-tree max-hops	190
26.11 instance	191
26.12 name	192
26.13 revision	192
26.14 spanning-tree(interface)	193
26.15 spanning-tree common-config	193
26.16 spanning-tree mst	194
26.17 spanning-tree bpdufilter	195
26.18 spanning-tree bpduguard	196
26.19 spanning-tree guard loop	196
26.20 spanning-tree guard root	197
26.21 spanning-tree guard tc	197
26.22 spanning-tree mcheck	198
26.23 show spanning-tree active	198
26.24 show spanning-tree bridge	199
26.25 show spanning-tree interface	199
26.26 show spanning-tree interface-security	200
26.27 show spanning-tree mst	200
Chapter 27 IGMP Snooping Commands	202
27.1 ip igmp snooping(global)	202
27.2 ip igmp snooping rtime	202
27.3 ip igmp snooping mtime	203
27.4 ip igmp snooping report-suppression	203
27.5 ip igmp snooping drop-unknown	204
27.6 ip igmp snooping last-listener query-interval	204
27.7 ip igmp snooping last-listener query-count	205
27.8 ip igmp snooping vlan-config	205
27.9 ip igmp snooping multi-vlan-config	206
27.10 ip igmp snooping querier vlan	208
27.11 ip igmp snooping querier vlan (general query)	208
27.12 ip igmp snooping(interface)	209
27.13 ip igmp snooping immediate-leave	209
27.14 ip igmp snooping max-groups	210
27.15 ip igmp profile	211
27.16 deny	211
27.17 permit	212
27.18 range	212
27.19 ip igmp filter	213
27.20 clear ip igmp snooping statistics	213
27.21 show ip igmp snooping	214
27.22 show ip igmp snooping interface	214
27.23 show ip igmp snooping vlan	215
27.24 show ip igmp snooping multi-vlan	215
27.25 show ip igmp snooping groups	216
27.26 show ip igmp snooping querier	217
27.27 show ip igmp profile	217
Chapter 28 MLD Snooping Commands	218
28.1 ipv6 mld snooping(global)	218
28.2 ipv6 mld snooping rtime	218
28.3 ipv6 mld snooping mtime	219
28.4 ipv6 mld snooping report-suppression	219
28.5 ipv6 mld snooping drop-unknown	220
28.6 ipv6 mld snooping last-listener query-interval	220
28.7 ipv6 mld snooping last-listener query-count	220
28.8 ipv6 mld snooping vlan-config	221
28.9 ipv6 mld snooping multi-vlan-config	222
28.10 ipv6 mld snooping querier vlan	223
28.11 ipv6 mld snooping querier vlan (general query)	224
28.12 ipv6 mld snooping(interface)	225
28.13 ipv6 mld snooping immediate-leave	225
28.14 ipv6 mld snooping max-groups	226
28.15 ipv6 mld profile	227
28.16 deny	227
28.17 permit	228
28.18 range	228
28.19 ipv6 mld filter	229
28.20 clear ipv6 mld snooping statistics	229
28.21 show ipv6 mld snooping	229
28.22 show ipv6 mld snooping interface	230
28.23 show ipv6 mld snooping vlan	231
28.24 show ipv6 mld snooping multi-vlan	231
28.25 show ipv6 mld snooping groups	231
28.26 show ipv6 mld snooping querier	232
28.27 show ipv6 mld profile	232
Chapter 29 SNMP Commands	234
29.1 snmp-server	234
29.2 snmp-server view	234
29.3 snmp-server group	235
29.4 snmp-server user	236
29.5 snmp-server community	238
29.6 snmp-server host	238
29.7 snmp-server engineID	240
29.8 snmp-server traps	241
29.9 snmp-server traps snmp	242
29.10 snmp-server traps link-status	242
29.11 snmp-server traps mac	243
29.12 snmp-server traps vlan	244
29.13 rmon history	244
29.14 rmon event	245
29.15 rmon alarm	246
29.16 rmon statistics	248
29.17 show snmp-server	249
29.18 show snmp-server view	249
29.19 show snmp-server group	249
29.20 show snmp-server user	250
29.21 show snmp-server community	250
29.22 show snmp-server host	250
29.23 show snmp-server engineID	251
29.24 show rmon history	251
29.25 show rmon event	251
29.26 show rmon alarm	252
29.27 show rmon statistics	252
Chapter 30 LLDP Commands	254
30.1 lldp	254
30.2 lldp hold-multiplier	254
30.3 lldp timer	255
30.4 lldp med-fast-count	256
30.5 lldp receive	256
30.6 lldp transmit	257
30.7 lldp snmp-trap	257
30.8 lldp tlv-select	258
30.9 lldp med-location	258
30.10 lldp med-status	259
30.11 lldp med-tlv-select	260
30.12 show lldp	260
30.13 show lldp interface	261
30.14 show lldp local-information interface	261
30.15 show lldp neighbor-information interface	262
30.16 show lldp traffic interface	262
Chapter 31 ARP Commands	264
31.1 arp	264
31.2 clear arp-cache	264
31.3 arp timeout	265
31.4 show arp	265
31.5 show ip arp (interface)	266
31.6 show ip arp summary	266
Chapter 32 Static Routes Commands	268
32.1 interface vlan	268
32.2 interface loopback	268
32.3 switchport	269
32.4 shutdown	269
32.5 ip route	270
32.6 description	270
32.7 show interface vlan	271
32.8 show ip interface	271
32.9 show ip interface brief	272
32.10 show ip route	272
32.11 show ip route specify	273