Filter
Top Products
1396 Denial of Service Commands
– TCP Flag SYN set and Source Port < 1024 or TCP Control Flags = 0
and
– TCP Sequence Number = 0 or TCP Flags FIN, URG, and PSH set
and
– TCP Sequence Number = 0 or TCP Flags SYN and FIN set.
• TCP Offset:
– Checks for TCP header offset =1.
•TCP SYN:
–TCP Flag SYN set.
• TCP SYN & FIN:
– TCP Flags SYN and FIN set.
• TCP FIN & URG & PSH:
– TCP Flags FIN and URG and PSH set and TCP Sequence Number =
0.
•ICMP V6:
– Limiting the size of ICMPv6 Ping packets.
•ICMP Fragment:
– Checks for fragmented ICMP packets.
Commands in this Chapter
This chapter explains the following commands:
dos-control firstfrag ip icmp error-interval
dos-control icmp ip unreachables
dos-control l4port ip redirects
dos-control sipdip ipv6 icmp error-interval
dos-control tcpflag ipv6 unreachables
dos-control tcpfrag show dos-control
ip icmp echo-reply
2CSPC4.XCT-SWUM2XX1.book Page 1396 Monday, October 3, 2011 11:05 AM