ZyXEL VES1724-56 User Guide - Page 284
Table 123, Label, Description
View all ZyXEL VES1724-56 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 284 highlights
Chapter 31 DoS Prevention The following table describes the labels in this screen. Table 123 DoS Prevention LABEL Active Action Mac IP ICMP TCP UDP Apply Cancel DESCRIPTION Select the check box to enable DoS prevention. Specify the action(s) and filtering criteria the Switch takes on all incoming packets. Select the If packets with source Mac address equals destination Mac address, drop them. check box to discard any packets whose source MAC address and destination MAC address are the same. Select the If packets with source IP address equals destination IP address, drop them. check box to discard any IP packets whose source IP address and destination IP address are the same. select the If the packets are fragmented ICMP packets, drop them. check box to have the Switch discard any fragmented ICMP packets. Select the Check TCP SYN packet with source port values are always 0, drop them. check box to have the Switch discard any TCP SYN packets whose source port numbers are zero. Select the TCP fragments with offset value of 1 are dropped. check box to have the Switch discard any TCP fragments with a Data Offset of 1. Select the TCP packets with control flags equals 0 and sequence number equals 0, drop them. check box to have the Switch discard any TCP packets whose control (flag) bit and sequence number are 0. Select the TCP packets with source port equals destination port, drop them. check box to have the Switch discard any TCP packets whose source port and destination port are the same. Select the TCP packets with SYN and FIN bits, drop them. check box to have the Switch discard the TCP packets that contain both SYN (SYNchronize) and FIN (Finish) flags. Select the TCP packets with FIN, URG and PSH bits and sequence number equals 0, drop them. check box to have the Switch discard any TCP packets whose FIN (Finish), URG (URGent) and PSH (Push) flags bits and sequence number are 0. Select the UDP packets with source port equals destination port, drop them. check box to have the Switch discard any UDP packets whose source port and destination port are the same. Click Apply to save your changes to the Switch's run-time memory. The Switch loses these changes if it is turned off or loses power, so use the Save link on the top navigation panel to save your changes to the non-volatile memory when you are done configuring. Click Cancel to begin configuring this screen afresh. 284 VES1724-56 User's Guide